Lucene search
K

5 matches found

Packet Storm News
Packet Storm News
added 2025/07/25 12:0 a.m.8 views

PAM Environment Variable Injection

PAM pamenv.so module allows environment variable injection via /.pamenvironment leading to privilege escalation through SystemD session manipulation. This scripts gauges exploitability...

7.8CVSS8.7AI score0.00957EPSS
Exploits19
CNNVD
CNNVD
added 2023/12/04 12:0 a.m.3 views

MediaTek Chip Security Breach

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of privilege checking in the aee module, which could lead to privilege escalation...

6.7CVSS7AI score0.00107EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/11/03 8:9 a.m.10 views

openssh: privilege escalation via user's PAM environment and UseLogin=yes

It was discovered that the OpenSSH sshd daemon fetched PAM environment settings before running the login program. In configurations with UseLogin=yes and the pamenv PAM module configured to read user environment settings, a local user could use this flaw to execute arbitrary code as root...

7.8CVSS7.5AI score0.00627EPSS
Exploits0References4
securityvulns
securityvulns
added 2011/10/26 12:0 a.m.45 views

pam buffer overflow

pamenv module buffer overflow...

4.6CVSS3.8AI score0.00696EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2010/11/01 12:0 a.m.4 views

PT-2010-1042 · Linux +1 · Linux-Pam +1

Name of the Vulnerable Software and Affected Versions: Linux-PAM versions prior to 1.1.2 Red Hat Enterprise Linux pam-devel version 1.1.1 Red Hat Enterprise Linux pam-debuginfo version 1.1.1 Red Hat Enterprise Linux pam version 1.1.1 Description: The issue concerns multiple vulnerabilities in the...

7.2CVSS5.4AI score0.00416EPSS
Exploits0References41
Rows per page
Query Builder