Lucene search
K

4 matches found

NVD
NVD
added 2006/07/06 8:5 p.m.27 views

CVE-2006-3378

passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits...

7.2CVSS6.7AI score0.00341EPSS
Exploits0References7
OSV
OSV
added 2006/07/06 8:5 p.m.11 views

CVE-2006-3378

passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits...

6.6AI score
Exploits0References7
CVE
CVE
added 2006/07/06 8:0 p.m.60 views

CVE-2006-3378

CVE-2006-3378 affects the shadow passwd handling in Ubuntu 5.04–6.06 LTS, where passwd invoked with -f, -g, or -s does not check the return code of a setuid() call. This can allow local users to gain root privileges if setuid fails (e.g., due to PAM limits or resource caps). Exploitation details ...

7.2CVSS6.6AI score0.00341EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2006/07/06 8:0 p.m.17 views

CVE-2006-3378

passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits...

7.2CVSS4.6AI score0.00341EPSS
Exploits0
Rows per page
Query Builder