Lucene search
MitreCVELIST:CVE-2010-4706HistoryJan 24, 2011 - 6:00 p.m.
CVE-2010-4706
2011-01-2418:00:00
mitre
www.cve.org
The pam_sm_close_session function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.2 and earlier does not properly handle a failure to determine a certain target uid, which might allow local users to delete unintended files by executing a program that relies on the pam_xauth PAM check.
References
git.altlinux.org/people/ldv/packages/?p=pam.git%3Ba=commit%3Bh=Linux-PAM-1_1_2-3-g05dafc06cd3dfeb7c4b24942e4e1ae33ff75a123
openwall.com/lists/oss-security/2010/10/03/1
secunia.com/advisories/49711
security.gentoo.org/glsa/glsa-201206-31.xml
www.securityfocus.com/bid/46045
exchange.xforce.ibmcloud.com/vulnerabilities/65035
Related
prion
prion
Authentication flaw
2011-01-24 19:00:00
nvd
nvd
CVE-2010-4706
2011-01-24 19:00:01
cve
cve
CVE-2010-4706
2011-01-24 19:00:01
debiancve
debiancve
CVE-2010-4706
2011-01-24 19:00:01
ubuntucve
ubuntucve
CVE-2010-4706
2011-01-24 00:00:00
openvas
openvas
Ubuntu Update for pam USN-1140-1
2011-06-06 00:00:00
Ubuntu: Security Advisory (USN-1140-2)
2011-06-06 00:00:00
Ubuntu Update for pam USN-1140-2
2011-06-06 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 : pam regression (USN-1140-2)
2011-06-13 00:00:00
GLSA-201206-31 : Linux-PAM: Multiple vulnerabilities
2012-06-26 00:00:00
ubuntu
ubuntu
PAM vulnerabilities
2011-05-30 00:00:00
PAM regression
2011-05-31 00:00:00
gentoo
gentoo
Linux-PAM: Multiple vulnerabilities
2012-06-25 00:00:00