OSVDB ID: 3814 Title: Multiple Unix Vendor passwd Malformed ulimit /etc/passwd Manipulation |
Info |
|
|
Dates |
||||
|
|
Description |
passwd contains an implementation flaw that may allow a local denial of service. The issue is triggered when the 'passwd' command is used in an environment with a very small ulimit value. If /etc/passwd is larger than the ulimit, use of the 'passwd' command will result in a truncated /etc/passwd file. If ulimit was set to 0 the /etc/passwd file will be empty, which will invalidate all password authentication attempts, and result in a loss of availability. |
Classification |
Location:
Local Access Required
Attack Type: Authentication Management Impact: Loss of Availability Exploit: Exploit Public Disclosure: OSVDB Verified |
Solution |
Modern implementations of the 'passwd' utility perform adequate checks to avoid this vulnerabilitu. Refer to the vendor documentation for specific version numbers. An upgrade is required as there are no known workarounds. |
Products |
|
References |
Credit |
Unknown or Incomplete |