Vulnerabilities

CVE-2010-4708

by Fred · 24/01/2011

The pam_env module in Linux-PAM (aka pam) 1.1.2 and earlier reads the .pam_environment file in a user’s home directory, which might allow local users to run programs with an unintended environment by executing a program that relies on the pam_env PAM check.

Date published : 2011-01-24

http://www.securityfocus.com/bid/46046

http://pam.cvs.sourceforge.net/viewvc/pam/Linux-PAM/modules/pam_env/pam_env.8.xml?r1=1.7&r2=1.8

Similar

Tags: Cybersecurity Alert