6 matches found
Ubuntu Update for libgssglue USN-1612-1
Ubuntu Update for Linux kernel vulnerabilities USN-1612-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16121.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for libgssglue USN-1612-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net...
USN-1612-1: libgssglue vulnerability
It was discovered that libgssglue incorrectly handled the GSSAPIMECHCONF environment variable when running a privileged binary. A local attacker could exploit this to gain root privileges. CVE-2011-2709...
CVE-2011-2709
libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPIMECHCONF environment variable, as demonstrated using mount.nfs...
DEBIAN-CVE-2011-2709
libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPIMECHCONF environment variable, as demonstrated using mount.nfs...
Code injection
libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPIMECHCONF environment variable, as demonstrated using mount.nfs...
CVE-2011-2709
libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPIMECHCONF environment variable, as demonstrated using mount.nfs...