Описание
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.1.8-3.2ubuntu2 |
| esm-infra-legacy/trusty | released | 1.1.8-1ubuntu2.1 |
| esm-infra/xenial | released | 1.1.8-3.2ubuntu2 |
| precise | released | 1.1.3-7ubuntu2.1 |
| precise/esm | not-affected | 1.1.3-7ubuntu2.1 |
| trusty | released | 1.1.8-1ubuntu2.1 |
| trusty/esm | released | 1.1.8-1ubuntu2.1 |
| upstream | released | 1.1.8-3.2 |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
Показывать по
EPSS
5.8 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
The _unix_run_helper_binary function in the pam_unix module in Linux-P ...
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
EPSS
5.8 Medium
CVSS2
6.5 Medium
CVSS3