The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.

ibm 16

fedora 2

nessus 16

mageia 1

openvas 18

centos 1

ubuntucve 1

oraclelinux 1

redhat 1

f5 2

debiancve 1

veracode 1

prion 1

cve 1

amazon 1

ubuntu 3

cloudfoundry 1

gentoo 1

suse 3

oracle 1

ibm

Security Bulletin: A vulnerability in the Linux Pluggable Authentication Module (PAM) affects the IBM FlashSystem model V9000 (CVE-2015-3238)

2018-06-18 00:10:21

Security Bulletin: Vulnerabilities in Open Source pam affect IBM Security Identity Governance Appliance (CVE-2015-3238)

2018-06-16 21:39:51

Security Bulletin: A vulnerability in Pluggable Authentication Modules (PAM) affects IBM Security Network Protection (CVE-2015-3238)

2018-06-16 21:31:50

fedora

[SECURITY] Fedora 21 Update: pam-1.1.8-19.fc21

2015-07-03 18:39:15

[SECURITY] Fedora 22 Update: pam-1.1.8-19.fc22

2015-06-30 20:20:46

nessus

RHEL 6 / 7 : pam (RHSA-2015:1640)

2015-08-19 00:00:00

Scientific Linux Security Update : pam on SL6.x, SL7.x i386/x86_64 (20150818)

2015-08-20 00:00:00

Fedora 22 : pam-1.1.8-19.fc22 (2015-10830)

2015-07-01 00:00:00

mageia

Updated pam package fixes security vulnerability

2015-07-05 20:22:03

openvas

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2018-1375)

2020-01-23 00:00:00

Amazon Linux: Security Advisory (ALAS-2015-589)

2015-09-08 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:1398-1)

2021-04-19 00:00:00

centos

pam security update

2015-08-18 15:30:42

ubuntucve

CVE-2015-3238

2015-08-24 00:00:00

oraclelinux

pam security update

2015-08-18 00:00:00

redhat

(RHSA-2015:1640) Moderate: pam security update

2015-08-18 00:00:00

SOL17494 - PAM vulnerability CVE-2015-3238

2015-10-27 00:00:00

K17494 : PAM vulnerability CVE-2015-3238

2015-10-27 00:00:00

debiancve

CVE-2015-3238

2015-08-24 14:59:04

veracode

Denial Of Service (DoS)

2019-01-15 09:07:22

prion

Default credentials

2015-08-24 14:59:00

cve

CVE-2015-3238

2015-08-24 14:59:04

amazon

Medium: pam

2015-09-02 12:00:00

ubuntu

PAM regression

2016-03-16 00:00:00

PAM regression

2016-03-17 00:00:00

PAM vulnerabilities

2016-03-16 00:00:00

cloudfoundry

USN-2935-2 PAM regression | Cloud Foundry

2016-05-06 00:00:00

gentoo

Linux-PAM: Multiple vulnerabilities

2016-05-31 00:00:00

suse

Security update for SLES 12-SP2 Docker image (important)

2017-10-11 03:08:09

Security update for SLES 12 Docker image (important)

2017-10-11 03:06:53

Security update for SLES 12-SP1 Docker image (important)

2017-10-11 03:07:32

oracle

Oracle Critical Patch Update Advisory - April 2016

2016-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.1 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.3%

JSON

Related for CVELIST:CVE-2015-3238