CVE-2015-9542
Description
add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy(). An attacker could send a crafted password to an application (loading the pam_radius library) and crash it. Arbitrary code execution might be possible, depending on the application, C library, compiler, and other factors.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.9
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu4.1_i386.deb | Linux |
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu4.1_amd64.deb | Linux |
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu5.18.04.1_i386.deb | Linux |
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu5.18.04.1_amd64.deb | Linux |
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu5.19.10.1_i386.deb | Linux |
| The PAM RADIUS authentication module (USN-4290-1) libpam-radius-auth_1.3.17-0ubuntu5.19.10.1_amd64.deb | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP4 ) pam_radius-1.3.16-239.4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP5 ) pam_radius-1.3.16-239.4.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP4 ) pam_radius-32bit-1.3.16-239.4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP5 ) pam_radius-32bit-1.3.16-239.4.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP4 ) pam_radius-debuginfo-1.3.16-239.4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP5 ) pam_radius-debuginfo-1.3.16-239.4.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP4 ) pam_radius-debuginfo-32bit-1.3.16-239.4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP5 ) pam_radius-debuginfo-32bit-1.3.16-239.4.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP4 ) pam_radius-debugsource-1.3.16-239.4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1117-1(SUSE Linux Enterprise Server 12-SP5 ) pam_radius-debugsource-1.3.16-239.4.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2021:1896-1(SUSE Linux Enterprise Module for Server Applications 15-SP3 ) pam_radius-1.4.0-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1896-1(SUSE Linux Enterprise Module for Server Applications 15-SP3 ) pam_radius-debuginfo-1.4.0-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1896-1(SUSE Linux Enterprise Module for Server Applications 15-SP3 ) pam_radius-debugsource-1.4.0-3.3.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234