CVE-2009-0361
Published Feb 13, 2009
Last updated 6 years ago
Overview
- Description
- Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pam_setcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, and then launching a setuid application that performs certain pam_setcred operations.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-264
Vendor comments
- Red HatNot vulnerable. This issue did not affect the versions of the pam_krb5 package, as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "989241C8-BC2F-4DE2-BF9E-9CC64198AF5A",
"versionEndIncluding": "3.12"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "633EE1E7-1B5D-4D10-BA4B-D13A15BA68B2"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B6844EE-3552-429A-A3D8-9A6B6C3B2785"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9619E40-83AA-46D6-AECF-CC7FF6B1ED1B"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1FF1D6C7-15E6-4DAA-92C1-C216905866B4"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB0342E5-B622-4A5E-A57F-6EAF85E268C1"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B2684C7D-B266-4460-9DAD-945B4DECF57C"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FDC110CB-253F-44E6-8515-FC9025EBF57F"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D78AEED8-34AB-41B7-926F-6F7995253E5A"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FB53833E-EB9E-4ED8-8BC5-B681BE0B2897"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0FE72618-6BE5-45F3-A782-991A73C09389"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "315E2FB7-EEE5-48AA-B058-F53AEA210807"
},
{
"criteria": "cpe:2.3:a:eyrie:pam-krb5:3.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4421B50-CC46-4EA6-AACF-DBE0EE76A389"
}
],
"operator": "OR"
}
]
}
]