Vulnerability CVE-2014-2583

Vulnerability CVE-2014-2583

Published: 2014-04-10 Modified: 2014-04-11

Description:

	Topic	Author	Date
Low	PAM timestamp internals bypass authentication	Sebastian	26.03.2014

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
5.8/10	4.9/10	8.6/10

Affected software
Linux-pam -> Linux-pam
Kernel -> Linux-pam

http://www.openwall.com/lists/oss-security/2014/03/24/5

http://www.openwall.com/lists/oss-security/2014/03/26/10

http://www.openwall.com/lists/oss-security/2014/03/31/6

http://www.securityfocus.com/bid/66493

http://www.ubuntu.com/usn/USN-2935-1

http://www.ubuntu.com/usn/USN-2935-2

http://www.ubuntu.com/usn/USN-2935-3

https://git.fedorahosted.org/cgit/linux-pam.git/commit/?id=Linux-PAM-1_1_8-32-g9dcead8

https://security.gentoo.org/glsa/201605-05