Lucene search
K

467 matches found

Cvelist
Cvelist
added 2011/01/24 6:0 p.m.30 views

CVE-2010-4708

The pamenv module in Linux-PAM aka pam 1.1.2 and earlier reads the .pamenvironment file in a user's home directory, which might allow local users to run programs with an unintended environment by executing a program that relies on the pamenv PAM check...

5.9AI score0.00369EPSS
Exploits0References8
CVE
CVE
added 2011/01/24 6:0 p.m.88 views

CVE-2010-4706

The CVE-2010-4706 issue affects the pam_xauth module of Linux-PAM (pam) up to version 1.1.2. The pam_sm_close_session function may fail to handle a target uid determination error, enabling a local attacker to delete unintended files by running a program that relies on pam_xauth PAM checks. The de...

4.9CVSS6AI score0.00368EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2011/01/24 6:0 p.m.105 views

CVE-2010-4707

CVE-2010-4707 affects the pam_xauth module of Linux-PAM (pam) in versions 1.1.2 and earlier. The vulnerable code path is in check_acl within pam_xauth.c, where the ACL file is not verified to be a regular file. This can allow local attackers to cause denial of service (resource consumption) by ex...

4.9CVSS5.9AI score0.0036EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/01/24 6:0 p.m.24 views

CVE-2010-4707

The checkacl function in pamxauth.c in the pamxauth module in Linux-PAM aka pam 1.1.2 and earlier does not verify that a certain ACL file is a regular file, which might allow local users to cause a denial of service resource consumption via a special file...

5.8AI score0.0036EPSS
Exploits0References6
Prion
Prion
added 2011/01/24 6:0 p.m.24 views

Design/Logic Flaw

The runcoprocess function in pamxauth.c in the pamxauth module in Linux-PAM aka pam before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executing a program that relies on the pamxauth PAM check...

3.3CVSS6.6AI score0.00366EPSS
Exploits0References21Affected Software1
Prion
Prion
added 2011/01/24 6:0 p.m.23 views

Code injection

pamnamespace.c in the pamnamespace module in Linux-PAM aka pam before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a setuid program that relies on the pamnamespace PAM...

6.9CVSS7AI score0.00416EPSS
Exploits0References11Affected Software1
CVE
CVE
added 2011/01/24 6:0 p.m.66 views

CVE-2010-4708

CVE-2010-4708 affects Linux-PAM (pam) up to version 1.1.2, with the pam_env module reading a user’s .pam_environment file and potentially allowing local users to run programs with an unintended environment. Connected sources corroborate the vulnerability in pam_env and indicate the affected range...

7.2CVSS6.1AI score0.00369EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2011/01/24 6:0 p.m.22 views

Directory traversal

The 1 pamenv and 2 pammail modules in Linux-PAM aka pam before 1.1.2 use root privileges during read access to files and directories that belong to arbitrary user accounts, which might allow local users to obtain sensitive information by leveraging this filesystem activity, as demonstrated by a...

4.7CVSS5.8AI score0.00356EPSS
Exploits0References19Affected Software1
Debian CVE
Debian CVE
added 2011/01/24 6:0 p.m.21 views

CVE-2010-4706

The pamsmclosesession function in pamxauth.c in the pamxauth module in Linux-PAM aka pam 1.1.2 and earlier does not properly handle a failure to determine a certain target uid, which might allow local users to delete unintended files by executing a program that relies on the pamxauth PAM check...

4.9CVSS6AI score0.00368EPSS
Exploits0
Debian CVE
Debian CVE
added 2011/01/24 6:0 p.m.31 views

CVE-2010-4708

The pamenv module in Linux-PAM aka pam 1.1.2 and earlier reads the .pamenvironment file in a user's home directory, which might allow local users to run programs with an unintended environment by executing a program that relies on the pamenv PAM check...

7.2CVSS6AI score0.00369EPSS
Exploits0
Cvelist
Cvelist
added 2011/01/24 5:0 p.m.28 views

CVE-2010-3316

The runcoprocess function in pamxauth.c in the pamxauth module in Linux-PAM aka pam before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executing a program that relies on the pamxauth PAM check...

5.8AI score0.00366EPSS
Exploits0References21
Debian CVE
Debian CVE
added 2011/01/24 5:0 p.m.28 views

CVE-2010-3431

The privilege-dropping implementation in the 1 pamenv and 2 pammail modules in Linux-PAM aka pam 1.1.2 does not check the return value of the setfsuid system call, which might allow local users to obtain sensitive information by leveraging an unintended uid, as demonstrated by a symlink attack on...

1.9CVSS5.5AI score0.00349EPSS
Exploits0
Cvelist
Cvelist
added 2011/01/24 5:0 p.m.26 views

CVE-2010-3853

pamnamespace.c in the pamnamespace module in Linux-PAM aka pam before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a setuid program that relies on the pamnamespace PAM...

6.2AI score0.00416EPSS
Exploits0References11
Cvelist
Cvelist
added 2011/01/24 5:0 p.m.35 views

CVE-2010-3435

The 1 pamenv and 2 pammail modules in Linux-PAM aka pam before 1.1.2 use root privileges during read access to files and directories that belong to arbitrary user accounts, which might allow local users to obtain sensitive information by leveraging this filesystem activity, as demonstrated by a...

5.5AI score0.00356EPSS
Exploits0References19
Cvelist
Cvelist
added 2011/01/24 5:0 p.m.52 views

CVE-2010-3431

The privilege-dropping implementation in the 1 pamenv and 2 pammail modules in Linux-PAM aka pam 1.1.2 does not check the return value of the setfsuid system call, which might allow local users to obtain sensitive information by leveraging an unintended uid, as demonstrated by a symlink attack on...

5.4AI score0.00349EPSS
Exploits0References16
CVE
CVE
added 2011/01/24 5:0 p.m.93 views

CVE-2010-3431

The CVE-2010-3431 entry concerns Linux-PAM (pam) privilege elevation via pam_env/pam_mail. Affected if using pam before 1.1.2 where setfsuid return values are not checked, enabling local users to obtain sensitive information through root-privilege filesystem activity (notably a symlink attack on ...

1.9CVSS5.5AI score0.00349EPSS
Exploits0References16Affected Software1
CVE
CVE
added 2011/01/24 5:0 p.m.110 views

CVE-2010-3430

CVE-2010-3430 documents a privilege drop flaw in Linux-PAM (pam_env and pam_mail) where setfsgid/setgroups aren’t called, enabling local users to glean sensitive info via a symlink attack on ~/.pam_environment. The issue stems from Linux-PAM before version 1.1.2 pam_env/pam_mail reading files wit...

4.7CVSS5.5AI score0.0034EPSS
Exploits0References16Affected Software1
CVE
CVE
added 2011/01/24 5:0 p.m.74 views

CVE-2010-3853

CVE-2010-3853 affecting Linux-PAM’s pam_namespace.c: the pam_namespace module (Linux-PAM) before 1.1.3 uses the environment of the invoking application or service when executing namespace.init, which might allow a local user to gain privileges by running a setuid program that relies on the pam_na...

6.9CVSS6.2AI score0.00416EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2011/01/24 5:0 p.m.31 views

CVE-2010-3430

The privilege-dropping implementation in the 1 pamenv and 2 pammail modules in Linux-PAM aka pam 1.1.2 does not perform the required setfsgid and setgroups system calls, which might allow local users to obtain sensitive information by leveraging unintended group permissions, as demonstrated by a...

5.4AI score0.0034EPSS
Exploits0References16
CVE
CVE
added 2011/01/24 5:0 p.m.101 views

CVE-2010-3435

CVE-2010-3435 affects Linux-PAM (pam) 0.99.x through 1.1.1, where the (1) pam_env and (2) pam_mail modules perform read access with root privileges to files/dirs owned by arbitrary users. This can enable local users to obtain sensitive information via filesystem activity, demonstrated by a symlin...

4.7CVSS5.5AI score0.00356EPSS
Exploits0References19Affected Software1
Rows per page
Query Builder