VULHUB ™

AXSpawn is a freely available, open source PAM implementation for AX25 networks. It is maintained by Michael Vogel. The AXSpawn program does not properly check input length from incoming packets. This could result in a malicious user sending a custom-crafted packet to the authentication mechanism that could result in the overwriting of stack variables. The problem could then be exploited to execute arbitrary code with the privileges of login.

AXSpawn is a freely available, open source PAM implementation for AX25 networks. It is maintained by Michael Vogel. The AXSpawn program does not properly check input length from incoming packets. This could result in a malicious user sending a custom-crafted packet to the authentication mechanism that could result in the overwriting of stack variables. The problem could then be exploited to execute arbitrary code with the privileges of login.