The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login prevention) via a crafted packet.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-01-25T00:00:00

Updated: 2024-08-07T03:43:14.801Z

Reserved: 2010-11-30T00:00:00

Link: CVE-2010-4341

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-01-25T01:00:01.737

Modified: 2024-11-21T01:20:44.133

Link: CVE-2010-4341

cve-icon Redhat

Severity : Low

Publid Date: 2011-01-11T00:00:00Z

Links: CVE-2010-4341 - Bugzilla