CVSS v2 Base Score
It was discovered that the _unix_run_helper_binary() function of PAM's unix_pam module could write to a blocking pipe, possibly causing the function to become unresponsive. An attacker able to supply large passwords to the unix_pam module could use this flaw to enumerate valid user accounts, or cause a denial of service on the system.
Find more about CVE-2015-3228 from MITRE CVE directory and NIST NVD.
According to the description, this is only a problem if the pam_unix module asks for password. As boks_sshd does not handle password authentication (or any other type of authentication) via pam, boks_sshd is not vulnerable to this.
No FoxT product is affected by this vulnerability
Still have questions? We can help. Submit a case to Technical Support.