NT Authentication PAM Modules Buffer Overflow Vulnerability

The pam_smb and pam_ntdom are plug-in authentication modules that allow unix users to authenticate against an NT domain controller. The pam_smb module contains a remotely exploitable buffer overflow vulnerability. pam_ntdom, which was derived from pam_smb, contains the same vulnerability. The problem results from long user names being copied into a 16 byte stack variable without bounds checking.


 

Privacy Statement
Copyright 2010, SecurityFocus