Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200903-39
HistoryMar 25, 2009 - 12:00 a.m.

pam_krb5: Privilege escalation

2009-03-2500:00:00
Gentoo Foundation
security.gentoo.org
16

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON

Background

pam_krb5 is a a Kerberos v5 PAM module.

Description

The following vulnerabilities were discovered:

  • pam_krb5 does not properly initialize the Kerberos libraries for setuid use (CVE-2009-0360).
  • Derek Chan reported that calls to pam_setcred() are not properly handled when running setuid (CVE-2009-0361).

Impact

A local attacker could set an environment variable to point to a specially crafted Kerberos configuration file and launch a PAM-based setuid application to elevate privileges, or change ownership and overwrite arbitrary files.

Workaround

There is no known workaround at this time.

Resolution

All pam_krb5 users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=sys-auth/pam_krb5-3.12"
OSVersionArchitecturePackageVersionFilename
Gentooanyallsys-auth/pam_krb5<Β 3.12UNKNOWN

Related

nessus 9
securityvulns 3
debian 2
openvas 11
ubuntu 1
osv 1
seebug 4
prion 2
exploitpack 1
debiancve 2
ubuntucve 2
cve 2
exploitdb 1
gentoo 1
nessus
nessus
Solaris 10 (sparc) : 138371-06
2008-12-17 00:00:00
Ubuntu 8.04 LTS / 8.10 : libpam-krb5 vulnerabilities (USN-719-1)
2009-04-23 00:00:00
GLSA-200903-39 : pam_krb5: Privilege escalation
2009-03-27 00:00:00
securityvulns
securityvulns
pam_kerberos multiple security vulnerabilities
2009-02-12 00:00:00
pam-krb5 security advisory &#40;3.12 and earlier&#41;
2009-02-12 00:00:00
[SECURITY] [DSA 1722-1] New libpam-heimdal packages fix local privilege escalation
2009-02-12 00:00:00
debian
debian
[SECURITY] [DSA 1721-1] New libpam-krb5 packages fix local privilege escalation
2009-02-11 20:58:04
[SECURITY] [DSA 1722-1] New libpam-heimdal packages fix local privilege escalation
2009-02-11 21:04:35
openvas
openvas
Debian Security Advisory DSA 1721-1 (libpam-krb5)
2009-02-13 00:00:00
Gentoo Security Advisory GLSA 200903-39 (pam_krb5)
2009-03-31 00:00:00
Debian: Security Advisory (DSA-1721-1)
2009-02-13 00:00:00
ubuntu
ubuntu
pam-krb5 vulnerabilities
2009-02-12 00:00:00
osv
osv
libpam-krb5 - local privilege
2009-02-11 00:00:00
seebug
seebug
pam-krb5 APIδ½Ώη”¨ζœ¬εœ°ζƒι™ζε‡ζΌζ΄ž
2009-02-13 00:00:00
pam-krb5 < 3.13 Local Privilege Escalation Exploit
2014-07-01 00:00:00
pam-krb5 &lt; 3.13 Local Privilege Escalation Exploit
2009-03-30 00:00:00
prion
prion
Code injection
2009-02-13 17:30:00
Code injection
2009-02-13 17:30:00
exploitpack
exploitpack
pam-krb5 3.13 - Local Privilege Escalation
2009-03-29 00:00:00
debiancve
debiancve
CVE-2009-0360
2009-02-13 17:30:00
CVE-2009-0361
2009-02-13 17:30:00
ubuntucve
ubuntucve
CVE-2009-0360
2009-02-13 00:00:00
CVE-2009-0361
2009-02-13 00:00:00
cve
cve
CVE-2009-0360
2009-02-13 17:30:00
CVE-2009-0361
2009-02-13 17:30:00
exploitdb
exploitdb
pam-krb5 &lt; 3.13 - Local Privilege Escalation
2009-03-29 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2010
2014-12-11 00:00:00

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON
Related for GLSA-200903-39
nessus9securityvulns3debian2openvas11ubuntu1osv1seebug4prion2exploitpack1debiancve2ubuntucve2cve2exploitdb1gentoo1