Lucene search
RedHatRHSA-2003:028HistoryJan 28, 2003 - 12:00 a.m.
(RHSA-2003:028) pam security update
2003-01-2800:00:00
access.redhat.com
12
EPSS
0
Percentile
9.7%
The pam_xauth module is used to forward xauth information from user to user
in applications such as the su command.
Andreas Beck discovered that pam_xauth will forward authorization
information from the root account to unprivileged users. This could be
used by a local attacker to gain access to an administrator’s X session.
To exploit this vulnerability the attacker would have to get the
administrator, as root, to use su to access the account belonging to the
attacker.
Users of pam_xauth are advised to upgrade to these errata packages which
contain a patch which adds ACL (access control list) functionality to
pam_xauth and disallows root forwarding by default.
Thanks to Andreas Beck for reporting this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | i386 | pam-devel | < 0.75-46.7.3 | pam-devel-0.75-46.7.3.i386.rpm |
| RedHat | any | ia64 | pam | < 0.75-46.7.3 | pam-0.75-46.7.3.ia64.rpm |
| RedHat | any | ia64 | pam-devel | < 0.75-46.7.3 | pam-devel-0.75-46.7.3.ia64.rpm |
| RedHat | any | i386 | pam | < 0.75-46.7.3 | pam-0.75-46.7.3.i386.rpm |
Related
cve
cve
CVE-2002-1160
2004-09-01 04:00:00
cert
cert
pam_xauth may insecurely forward "X MIT-Magic-Cookies" to new sessions
2003-05-04 00:00:00
cvelist
cvelist
CVE-2002-1160
2004-09-01 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : pam (MDKSA-2003:017-1)
2004-07-31 00:00:00
RHEL 2.1 : pam (RHSA-2003:028)
2004-07-06 00:00:00
nvd
nvd
CVE-2002-1160
2003-02-19 05:00:00