Computer Security
[EN] no-pyccku

python-pam memory corruption
SecurityVulns ID:12242
Threat Level:
Description:Memory corruption on the passwords with NULL byte.
Affected:PYTHON : python-pam 0.4
CVE:CVE-2012-1502 (Double free vulnerability in the PyPAM_conv in PAMmodule.c in PyPam 0.5.0 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a NULL byte in a password string.)
Original documentdocumentMarkus Vervier, LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption (10.03.2012)
 documentUBUNTU, [USN-1395-1] PyPAM vulnerability (10.03.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod