Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.23 views

Oracle: Security Advisory (ELSA-2008-0907)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS9.6AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.21 views

Oracle Linux 5 : pam_krb5 (ELSA-2008-0907)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0907 advisory. 2.2.14-1.el52.1 - add backported fix for ccache permissions bypass when the existingticket option is used CVE-2008-3825, 462112 Tenable has extracted the...

4.4CVSS5.5AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.29 views

Scientific Linux Security Update : pam_krb5/krb5 on SL5.x i386/x86_64

pamkrb5 address the following security issue : A flaw was found in the pamkrb5 'existingticket' configuration option. If a system is configured to use an existing credential cache via the 'existingticket' option, it may be possible for a local user to gain elevated privileges by using a different...

4.4CVSS5.3AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.16 views

SLES10: Security update for pam_krb5

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: pamkrb5 More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at http://download.novell.com/patch/finder/ VID...

4.4CVSS9.6AI score0.00353EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.26 views

openSUSE Security Update : pam_krb5 (pam_krb5-218)

Insufficient file access permissions checks allowed users to read Kerberos tickes of other users if pamkrb5 was configured with the option 'existingticket' CVE-2008-3825. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fro...

4.4CVSS5.3AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.23 views

Mandriva Linux Security Advisory : pam_krb5 (MDVSA-2008:209-1)

Stphane Bertin discovered a flaw in the pamkrb5 existingticket configuration option where, if enabled and using an existing credential cache, it was possible for a local user to gain elevated privileges by using a different, local user's credential cache CVE-2008-3825. The updated packages have...

4.4CVSS5.4AI score0.00353EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.23 views

Mandriva Update for pam_krb5 MDVSA-2008:209 (pam_krb5)

Check for the Version of pamkrb5 OpenVAS Vulnerability Test Mandriva Update for pamkrb5 MDVSA-2008:209 pamkrb5 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

4.4CVSS9.6AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.26 views

RedHat Update for pam_krb5 RHSA-2008:0907-01

Check for the Version of pamkrb5 OpenVAS Vulnerability Test RedHat Update for pamkrb5 RHSA-2008:0907-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.4CVSS9.6AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.17 views

RedHat Update for pam_krb5 RHSA-2008:0907-01

Check for the Version of pamkrb5 OpenVAS Vulnerability Test RedHat Update for pamkrb5 RHSA-2008:0907-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.4CVSS9.6AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.20 views

Fedora Update for pam_krb5 FEDORA-2008-8605

Check for the Version of pamkrb5 OpenVAS Vulnerability Test Fedora Update for pamkrb5 FEDORA-2008-8605 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.4CVSS9.6AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.12 views

Fedora Update for pam_krb5 FEDORA-2008-8618

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.4CVSS7.7AI score0.00353EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.16 views

Fedora Update for pam_krb5 FEDORA-2008-8605

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.4CVSS7.7AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/12/02 12:0 a.m.31 views

SuSE 10 Security Update : pam_krb5 (ZYPP Patch Number 5616)

Insufficient file access permissions checks allowed users to read Kerberos tickes of other users if pamkrb5 was configured with the option 'existingticket'. CVE-2008-3825 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

4.4CVSS5.3AI score0.00353EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/12/02 12:0 a.m.21 views

openSUSE 10 Security Update : pam_krb5 (pam_krb5-5624)

Insufficient file access permissions checks allowed users to read Kerberos tickes of other users if pamkrb5 was configured with the option 'existingticket' CVE-2008-3825. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fro...

4.4CVSS5.3AI score0.00353EPSS
Exploits0References1
securityvulns
securityvulns
added 2008/10/06 12:0 a.m.43 views

[ MDVSA-2008:209 ] pam_krb5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:209 http://www.mandriva.com/security/ Package : pamkrb5 Date : October 3, 2008 Affected: 2007.1, 2008.0, 2008.1 Problem Description: St©phane Bertin discovered a flaw in the pamkrb5 existingticket...

4.4CVSS9.4AI score0.00353EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/10/06 12:0 a.m.22 views

Fedora 9 : pam_krb5-2.3.0-2.fc9 (2008-8618)

This update adds a backported fix for CVE-2008-3825, a credential cache permission bypass which becomes possible when the 'existingticket' option is enabled. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

4.4CVSS5.4AI score0.00353EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2008/10/03 3:7 p.m.22 views

CVE-2008-3825

pamkrb5 2.2.14 in Red Hat Enterprise Linux RHEL 5 and earlier, when the existingticket option is enabled, uses incorrect privileges when reading a Kerberos credential cache, which allows local users to gain privileges by setting the KRB5CCNAME environment variable to an arbitrary cache filename a...

4.4CVSS5.9AI score0.00353EPSS
Exploits0References1
CVE
CVE
added 2008/10/03 3:0 p.m.66 views

CVE-2008-3825

CVE-2008-3825 affects pam_krb5 2.2.14 on Red Hat Enterprise Linux (RHEL) 5 and earlier when the existing_ticket option is enabled. The flaw causes reading of a Kerberos credential cache to use incorrect privileges, enabling local users to gain privileges by setting the KRB5CCNAME environment vari...

4.4CVSS7.5AI score0.00353EPSS
Exploits0References16Affected Software2
RedHat Linux
RedHat Linux
added 2008/10/02 1:59 p.m.29 views

Moderate: Red Hat Security Advisory: pam_krb5 security update

An updated pamkrb5 package that fixes a security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The pamkrb5 module allows Pluggable Authentication Modules PAM aware applications to use...

4.4CVSS5.6AI score0.00353EPSS
Exploits0References2
Rows per page
Query Builder