[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1722 libpam-heimdal -- programming error

ID: oval:org.mitre.oval:def:8163Date: (C)2009-12-15   (M)2021-06-02
Class: PATCHFamily: unix




Derek Chan discovered that the PAM module for the Heimdal Kerberos implementation allows reinitialisation of user credentials when run from a setuid context, resulting in potential local denial of service by overwriting the credential cache file or to local privilege escalation.

Platform:
Debian 4.0
Product:
libpam-heimdal
Reference:
DSA-1722
CVE-2009-0361
CVE    1
CVE-2009-0361
CPE    1
cpe:/o:debian:debian_linux:4.x

© SecPod Technologies