Lucene search

K
prionPRIOn knowledge basePRION:CVE-2014-2583
HistoryApr 10, 2014 - 8:29 p.m.

Directory traversal

2014-04-1020:29:00
PRIOn knowledge base
www.prio-n.com
4

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.7%

Multiple directory traversal vulnerabilities in pam_timestamp.c in the pam_timestamp module for Linux-PAM (aka pam) 1.1.8 allow local users to create arbitrary files or possibly bypass authentication via a โ€ฆ (dot dot) in the (1) PAM_RUSER value to the get_ruser function or (2) PAM_TTY value to the check_tty function, which is used by the format_timestamp_name function.

CPENameOperatorVersion
linux-pameq1.1.8

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.7%