The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) prior to 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux-pam linux-pam |
||
oracle sparc-opl service processor |