| Reporter | Title | Published | Views | Family All 57 |
|---|---|---|---|---|
| pam-krb5 < 3.13 Local Privilege Escalation Exploit | 29 Mar 200900:00 | – | zdt | |
| Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information | 28 Apr 201500:00 | – | bdu_fstec | |
| CVE-2009-0360 | 29 Mar 200900:00 | – | circl | |
| CVE-2009-0360 | 13 Feb 200917:00 | – | cve | |
| CVE-2009-0361 | 13 Feb 200917:00 | – | cve | |
| CVE-2009-0360 | 13 Feb 200917:00 | – | cvelist | |
| CVE-2009-0361 | 13 Feb 200917:00 | – | cvelist | |
| [SECURITY] [DSA 1721-1] New libpam-krb5 packages fix local privilege escalation | 11 Feb 200920:58 | – | debian | |
| [SECURITY] [DSA 1722-1] New libpam-heimdal packages fix local privilege escalation | 11 Feb 200921:04 | – | debian | |
| CVE-2009-0360 | 13 Feb 200917:00 | – | debiancve |
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-1722. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(35663);
script_version("1.15");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2009-0360", "CVE-2009-0361");
script_xref(name:"DSA", value:"1722");
script_name(english:"Debian DSA-1722-1 : libpam-heimdal - programming error");
script_summary(english:"Checks dpkg output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security-related update."
);
script_set_attribute(
attribute:"description",
value:
"Derek Chan discovered that the PAM module for the Heimdal Kerberos
implementation allows reinitialisation of user credentials when run
from a setuid context, resulting in potential local denial of service
by overwriting the credential cache file or to local privilege
escalation."
);
script_set_attribute(
attribute:"see_also",
value:"https://www.debian.org/security/2009/dsa-1722"
);
script_set_attribute(
attribute:"solution",
value:
"Upgrade the libpam-heimdal package.
For the stable distribution (etch), this problem has been fixed in
version 2.5-1etch1.
For the upcoming stable distribution (lenny), this problem has been
fixed in version 3.10-2.1."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(264, 287);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpam-heimdal");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");
script_set_attribute(attribute:"patch_publication_date", value:"2009/02/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2009/02/13");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"4.0", prefix:"libpam-heimdal", reference:"2.5-1etch1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation