CVE-2013-7322

usersfile.c in liboath in OATH Toolkit before 2.4.1 does not properly handle lines containing an invalid one-time-password (OTP) type and a user name in /etc/users.oath, which causes the wrong line to be updated when invalidating an OTP and allows context-dependent attackers to conduct replay attacks, as demonstrated by a commented out line when using libpam-oath.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.9 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
nongnuoath_toolkit
𝑥
≤ 2.4.0
nongnuoath_toolkit
1.0.0
nongnuoath_toolkit
1.0.1
nongnuoath_toolkit
1.2.0
nongnuoath_toolkit
1.2.1
nongnuoath_toolkit
1.2.2
nongnuoath_toolkit
1.4.0
nongnuoath_toolkit
1.4.1
nongnuoath_toolkit
1.4.2
nongnuoath_toolkit
1.4.3
nongnuoath_toolkit
1.4.4
nongnuoath_toolkit
1.4.5
nongnuoath_toolkit
1.4.6
nongnuoath_toolkit
1.6.0
nongnuoath_toolkit
1.6.1
nongnuoath_toolkit
1.6.2
nongnuoath_toolkit
1.6.3
nongnuoath_toolkit
1.6.4
nongnuoath_toolkit
1.8.0
nongnuoath_toolkit
1.8.1
nongnuoath_toolkit
1.8.2
nongnuoath_toolkit
1.10.0
nongnuoath_toolkit
1.10.1
nongnuoath_toolkit
1.10.2
nongnuoath_toolkit
1.10.3
nongnuoath_toolkit
1.10.4
nongnuoath_toolkit
1.10.5
nongnuoath_toolkit
1.12.0
nongnuoath_toolkit
1.12.1
nongnuoath_toolkit
1.12.2
nongnuoath_toolkit
1.12.3
nongnuoath_toolkit
1.12.4
nongnuoath_toolkit
1.12.5
nongnuoath_toolkit
1.12.6
nongnuoath_toolkit
2.0.0
nongnuoath_toolkit
2.0.1
nongnuoath_toolkit
2.0.2
nongnuoath_toolkit
2.2.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
oath-toolkit
bullseye
2.6.6-3
fixed
wheezy
no-dsa
bookworm
2.6.7-3.1
fixed
bookworm (security)
2.6.7-3.1+deb12u1
fixed
sid
2.6.12-1
fixed
trixie
2.6.12-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
oath-toolkit
disco
not-affected
cosmic
not-affected
bionic
not-affected
artful
ignored
zesty
ignored
yakkety
ignored
xenial
not-affected
wily
ignored
vivid
ignored
utopic
ignored
trusty
dne
saucy
ignored
quantal
ignored
precise
ignored
lucid
dne
Common Weakness Enumeration
References
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00000.html
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00002.html
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00003.html
http://seclists.org/oss-sec/2014/q1/296
http://www.nongnu.org/oath-toolkit/NEWS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/91316
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00000.html
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00002.html
http://lists.nongnu.org/archive/html/oath-toolkit-help/2013-12/msg00003.html
http://seclists.org/oss-sec/2014/q1/296
http://www.nongnu.org/oath-toolkit/NEWS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/91316