PyPAM Password Null Byte Handling Dereference Denial Of Service Vulnerability

Bugtraq ID:	52370
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2012-1502
Remote:	Yes
Local:	No
Published:	Mar 08 2012 12:00AM
Updated:	Jul 14 2015 11:59PM
Credit:	Markus Vervier
Vulnerable:	Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.10 powerpc Ubuntu Ubuntu Linux 10.10 i386 Ubuntu Ubuntu Linux 10.10 ARM Ubuntu Ubuntu Linux 10.10 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 Ubuntu PyPAM 0 Gentoo Linux Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64
Not Vulnerable:

PyPAM Password Null Byte Handling Dereference Denial Of Service Vulnerability

PyPAM is prone to a denial-of-service vulnerability caused by NULL bytes.

An attacker can exploit this issue to cause an application to crash, denying service to legitimate users. Code execution might be possible.

PyPAM Password Null Byte Handling Dereference Denial Of Service Vulnerability

The following exploit is available:

• /data/vulnerabilities/exploits/52370.py

PyPAM Password Null Byte Handling Dereference Denial Of Service Vulnerability

Solution:
Updates are available. Please see the references for more information.

PyPAM Password Null Byte Handling Dereference Denial Of Service Vulnerability

References:

• Ubuntu Security Notice USN-1395-1 (Ubuntu )
  
• PyPAM -- Python bindings for PAM - Double Free Corruption (LSE Leading Security Experts)