Lucene search

[email protected]CVE-2011-5054

HistoryJan 06, 2012 - 9:55 p.m.

CVE-2011-5054

2012-01-0621:55:00

CWE-287

[email protected]

web.nvd.nist.gov

kcheckpass

cve-2011-5054

pam configuration

privilege escalation

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service name, a different vulnerability than CVE-2011-4122. NOTE: the vendor indicates that the possibility of resultant privilege escalation may be “a bit far-fetched.”

CPENameOperatorVersion
kde:kcheckpasskde kcheckpasseq*

CPE	Name	Operator	Version
kde:kcheckpass	kde kcheckpass	eq	*

References

c-skills.blogspot.com/2011/11/openpam-trickery.html

openwall.com/lists/oss-security/2011/12/07/3

openwall.com/lists/oss-security/2011/12/08/9

openwall.com/lists/oss-security/2011/12/23/8

openwall.com/lists/oss-security/2011/12/27/1

openwall.com/lists/oss-security/2011/12/27/3

openwall.com/lists/oss-security/2011/12/28/5

openwall.com/lists/oss-security/2012/01/02/10

openwall.com/lists/oss-security/2012/01/02/11

exchange.xforce.ibmcloud.com/vulnerabilities/72230

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2011-5054

prion2 cvelist2 nessus1 openvas2 freebsd1 securityvulns2 cve1 freebsd_advisory1