CVE-2015-3238

2015-08-24T10:59:04
ID CVE-2015-3238
Type cve
Reporter NVD
Modified 2016-12-02T22:09:08

Description

The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.