CVE-2011-3148medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Stack-based buffer overflow in the _assemble_line function in modules/pam_env/pam_env.c in Linux-PAM (aka pam) before 1.1.5 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long string of white spaces at the beginning of the ~/.pam_environment file.
References
http://secunia.com/advisories/46583
http://secunia.com/advisories/49711
http://security.gentoo.org/glsa/glsa-201206-31.xml
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:linux-pam:linux-pam:0.99.1.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.2.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.2.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.3.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.4.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.5.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.7.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.7.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.8.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.8.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.9.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.10.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:*:*:*:*:*:*:*:* versions up to 1.1.4 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 75991 | openSUSE Security Update : pam (openSUSE-SU-2011:1204-1) | Nessus | SuSE Local Security Checks | medium |
| 75704 | openSUSE Security Update : pam (openSUSE-SU-2011:1208-1) | Nessus | SuSE Local Security Checks | medium |
| 69719 | Amazon Linux AMI : pam (ALAS-2013-160) | Nessus | Amazon Linux Local Security Checks | medium |
| 68757 | Oracle Linux 6 : pam (ELSA-2013-0521) | Nessus | Oracle Linux Local Security Checks | medium |
| 65152 | CentOS 6 : pam (CESA-2013:0521) | Nessus | CentOS Local Security Checks | medium |
| 64955 | Scientific Linux Security Update : pam on SL6.x i386/x86_64 (20130221) | Nessus | Scientific Linux Local Security Checks | medium |
| 64768 | RHEL 6 : pam (RHSA-2013:0521) | Nessus | Red Hat Local Security Checks | medium |
| 59704 | GLSA-201206-31 : Linux-PAM: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 57239 | SuSE 10 Security Update : pam (ZYPP Patch Number 7814) | Nessus | SuSE Local Security Checks | medium |
| 57126 | SuSE 11.1 Security Update : pam (SAT Patch Number 5342) | Nessus | SuSE Local Security Checks | medium |
| 56701 | SuSE 10 Security Update : pam (ZYPP Patch Number 7815) | Nessus | SuSE Local Security Checks | medium |
| 56629 | Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : pam vulnerabilities (USN-1237-1) | Nessus | Ubuntu Local Security Checks | medium |
| 56622 | Debian DSA-2326-1 : pam - several vulnerabilities | Nessus | Debian Local Security Checks | medium |