Case-insensitive password hashing vulnerability in pam_userdb module

Case-insensitive password hashing vulnerability in pam_userdb module

CVE-2013-7041 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The pam_userdb module for Pam uses a case-insensitive method to compare hashed passwords, which makes it easier for attackers to guess the password via a brute force attack.

Learn more about our User Device Pen Test.