PAM-MySQL contains a double-free vulnerability that may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.
PAM-MySQL provides a Pluggable Authentication Module (PAM) interface to a MySQL database. PAM-MySQL does not securely handle a pointer returned by the
pam_get_item() routine, which results in a double-free vulnerability. The vulnerability exists if the following conditions are present:
If a remote attacker supplies a specially crafted password to a vulnerable PAM-MySQL installation, that attacker may be able to crash the PAM-MySQL process. Note that it may be possible to exploit this vulnerability to execute arbitrary code.
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Vendor has issued information
__ Sort by: Status Alphabetical
Affected Unknown __ Unaffected
Updated: May 17, 2006
__ Not Vulnerable
No statement is currently available from the vendor regarding this vulnerability.
The vendor has not provided us with any further information regarding this vulnerability.
Group | Score | Vector
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | | N/A
This vulnerability was reported by Moriyoshi Koizumi.
This document was written by Jeff Gennari.
CVE IDs:* | CVE-2006-0056
**Severity Metric: | 3.94
*Date Public: | 2005-09-28
Date First Published: | 2006-02-09
Date Last Updated: | 2006-05-17 11:56 UTC
Document Revision: | 35