CVE-2009-3232

pam-auth-update for PAM, as used in Ubuntu 8.10 and 9.4, and Debian GNU/Linux, does not properly handle an "empty selection" for system authentication modules in certain rare configurations, which causes any attempt to be successful and allows remote attackers to bypass authentication.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=519927
http://secunia.com/advisories/36620	Vendor Advisory
https://launchpad.net/bugs/410171
http://www.openwall.com/lists/oss-security/2009/09/08/7
http://www.securityfocus.com/bid/36306	Patch
https://usn.ubuntu.com/828-1/

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:ubuntu:ubuntu_linux:9.04:::::::*
	cpe:2.3:o:ubuntu:ubuntu_linux:8.10:::::::*
	cpe:2.3:o:debian:debian_linux::::::::

Information

Published : 2009-09-17 03:30

Updated : 2018-10-03 15:01

NVD link : CVE-2009-3232

Mitre link : CVE-2009-3232

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

debian

debian_linux

ubuntu

ubuntu_linux

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=519927", "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=519927", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/36620", "name": "36620", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "https://launchpad.net/bugs/410171", "name": "https://launchpad.net/bugs/410171", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.openwall.com/lists/oss-security/2009/09/08/7", "name": "[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection", "tags": [], "refsource": "MLIST"}, {"url": "http://www.securityfocus.com/bid/36306", "name": "36306", "tags": ["Patch"], "refsource": "BID"}, {"url": "https://usn.ubuntu.com/828-1/", "name": "USN-828-1", "tags": [], "refsource": "UBUNTU"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "pam-auth-update for PAM, as used in Ubuntu 8.10 and 9.4, and Debian GNU/Linux, does not properly handle an \"empty selection\" for system authentication modules in certain rare configurations, which causes any attempt to be successful and allows remote attackers to bypass authentication."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-287"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2009-3232", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2009-09-17T10:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:ubuntu:ubuntu_linux:9.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:ubuntu:ubuntu_linux:8.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:debian:debian_linux:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-03T22:01Z"}

9.3 /10