Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-4285

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2013-4285
Last Modified 29 Apr 2014 07:09:09
Published 28 Apr 2014 10:09:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2013-4285

Summary

A certain Gentoo patch for the PAM S/Key module does not properly clear credentials from memory, which allows local users to obtain sensitive information by reading system memory.

Vulnerable Systems

Application

  • Dkorunic Pam S%2fkey -


References

GENTOO - GLSA-201402-12


Last Updated: 27 May 2016 11:05:06