4 matches found
CVE-2003-0388
pamwheel in Linux-PAM 0.78, with the trust option enabled and the useuid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin to return a spoofed user name...
CVE-2003-0388
pamwheel in Linux-PAM 0.78, with the trust option enabled and the useuid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin to return a spoofed user name...
CVE-2003-0388
CVE-2003-0388 concerns the pam_wheel module in Linux-PAM where, if the trust option is enabled and use_uid is disabled, local users can spoof getlogin() results and potentially gain privileges. The issue affects Linux-PAM versions up to 0.77 (notably around the pam_wheel and pam_lastlog handling ...
CVE-2003-0388
pamwheel in Linux-PAM 0.78, with the trust option enabled and the useuid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin to return a spoofed user name...