Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-0360
HistoryFeb 13, 2009 - 12:00 a.m.

CVE-2009-0360

2009-02-1300:00:00
ubuntu.com
ubuntu.com
7

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does
not properly initialize the Kerberos libraries for setuid use, which allows
local users to gain privileges by pointing an environment variable to a
modified Kerberos configuration file, and then launching a PAM-based setuid
application.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlibpam-krb5< 3.10-1ubuntu0.8.04.1UNKNOWN
ubuntu8.10noarchlibpam-krb5< 3.10-1ubuntu0.8.10.1UNKNOWN
ubuntu9.04noarchlibpam-krb5< 3.11-4ubuntu1UNKNOWN
ubuntu9.10noarchlibpam-krb5< 3.11-4ubuntu1UNKNOWN

Related

exploitpack 1
debiancve 1
seebug 3
prion 1
cve 1
redhatcve 1
exploitdb 1
ubuntu 1
gentoo 2
nessus 9
openvas 9
securityvulns 2
debian 1
osv 1
exploitpack
exploitpack
pam-krb5 3.13 - Local Privilege Escalation
2009-03-29 00:00:00
debiancve
debiancve
CVE-2009-0360
2009-02-13 17:30:00
seebug
seebug
pam-krb5 API使用本地权限提升漏洞
2009-02-13 00:00:00
pam-krb5 < 3.13 Local Privilege Escalation Exploit
2014-07-01 00:00:00
pam-krb5 &lt; 3.13 Local Privilege Escalation Exploit
2009-03-30 00:00:00
prion
prion
Code injection
2009-02-13 17:30:00
cve
cve
CVE-2009-0360
2009-02-13 17:30:00
redhatcve
redhatcve
CVE-2009-0360
2015-10-30 10:13:44
exploitdb
exploitdb
pam-krb5 &lt; 3.13 - Local Privilege Escalation
2009-03-29 00:00:00
ubuntu
ubuntu
pam-krb5 vulnerabilities
2009-02-12 00:00:00
gentoo
gentoo
pam_krb5: Privilege escalation
2009-03-25 00:00:00
Multiple packages, Multiple vulnerabilities fixed in 2010
2014-12-11 00:00:00
nessus
nessus
Solaris 10 (sparc) : 138371-06
2008-12-17 00:00:00
Ubuntu 8.04 LTS / 8.10 : libpam-krb5 vulnerabilities (USN-719-1)
2009-04-23 00:00:00
GLSA-200903-39 : pam_krb5: Privilege escalation
2009-03-27 00:00:00
openvas
openvas
Debian Security Advisory DSA 1721-1 (libpam-krb5)
2009-02-13 00:00:00
Gentoo Security Advisory GLSA 200903-39 (pam_krb5)
2009-03-31 00:00:00
Debian: Security Advisory (DSA-1721-1)
2009-02-13 00:00:00
securityvulns
securityvulns
pam_kerberos multiple security vulnerabilities
2009-02-12 00:00:00
pam-krb5 security advisory &#40;3.12 and earlier&#41;
2009-02-12 00:00:00
debian
debian
[SECURITY] [DSA 1721-1] New libpam-krb5 packages fix local privilege escalation
2009-02-11 20:58:44
osv
osv
libpam-krb5 - local privilege
2009-02-11 00:00:00

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON
Related for UB:CVE-2009-0360
exploitpack1debiancve1seebug3prion1cve1redhatcve1exploitdb1ubuntu1gentoo2nessus9openvas9securityvulns2debian1osv1