Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2010-4341

Published: 25/01/2011 Updated: 17/08/2017
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Fedorahosted

Vulnerability Summary

The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login prevention) via a crafted packet.

Vulnerable Product Search on Vulmon Subscribe to Product

fedorahosted sssd 1.4.0

fedorahosted sssd 1.4.1

fedoraproject sssd 1.3.0

fedoraproject sssd 1.5.0

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2010-4341
Debian Bug report logs - #610032 CVE-2010-4341 Package: sssd; Maintainer for sssd is Debian SSSD Team <pkg-sssd-devel@alioth-listsdebiannet>; Source for sssd is src:sssd (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Fri, 14 Jan 2011 23:24:01 UTC Severity: grave Tags: security, squeez ...

References

CWE-399https://bugzilla.redhat.com/show_bug.cgi?id=661163http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053337.htmlhttp://www.vupen.com/english/advisories/2011/0197http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053319.htmlhttp://secunia.com/advisories/43053http://www.securityfocus.com/bid/45961http://secunia.com/advisories/43055http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://www.vupen.com/english/advisories/2011/0212http://secunia.com/advisories/43068http://www.redhat.com/support/errata/RHSA-2011-0975.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0560.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/64881https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610032https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook