what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

Mandriva Linux Security Advisory 2010-220: Posted Nov 5, 2010; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2010-220 - The pam_xauth module did not verify the return values of the setuid() and setgid() system calls. A local, unprivileged user could use this flaw to execute the xauth command with root privileges and make it read an arbitrary input file. The pam_mail module used root privileges while accessing users' files. In certain configurations, a local, unprivileged user could use this flaw to obtain limited information about files or directories that they do not have access to. The pam_namespace module executed the external script namespace.init with an unchanged environment inherited from an application calling PAM. In cases where such an environment was untrusted (for example, when pam_namespace was configured for setuid applications such as su or sudo), a local, unprivileged user could possibly use this flaw to escalate their privileges.; tags | advisory, arbitrary, local, root; systems | linux, mandriva; advisories | CVE-2010-3316, CVE-2010-3435, CVE-2010-3853; SHA-256 | c75c1f0958b4914a5e219e8bcf5114e2f17ff93bf7a68433b923fa33342f579d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 61 files
Debian 34 files
Gentoo 32 files
LiquidWorm 10 files
nu11secur1ty 7 files
malvuln 5 files
Adam Gowdiak 4 files
liquidsky 3 files
kai6u 3 files

Recent News

500,000 Impacted By Ohio Lottery Ransomware Attack: Posted May 10, 2024; tags | headline, hacker, malware, usa, cybercrime, cryptography; Favorite | View

MoD Contractor Hacked By China Failed To Report Breach For Months: Posted May 10, 2024; tags | headline, hacker, government, britain, china, cyberwar, military; Favorite | View

Ex-White House Election Threat Hunter Weighs In On What To Expect In November: Posted May 10, 2024; tags | headline, government, usa, russia, fraud, cyberwar; Favorite | View

FBI Working Towards Nabbing Scattered Spider Hackers, Official Says: Posted May 10, 2024; tags | headline, hacker, government, usa, fbi; Favorite | View

Leaked FBI Email Stresses Need For Warrantless Surveillance Of Americans: Posted May 10, 2024; tags | headline, government, privacy, usa, spyware, fbi; Favorite | View

Exploited Chrome Zero Day Patched By Google: Posted May 10, 2024; tags | headline, flaw, google, patch, chrome; Favorite | View

Cybersecurity Incident Impacts Operations At Ascension Hospitals: Posted May 10, 2024; tags | headline, hacker, privacy, malware, data loss; Favorite | View

World Warned To Prepare For Today's Severe Geomagnetic Storm, First In 20 Years: Posted May 10, 2024; tags | headline; Favorite | View

GhostStripe Attack Haunts Self-Driving Cars: Posted May 10, 2024; tags | headline, hacker, flaw; Favorite | View

AWS CloudQuarry: Digging For Secrets In Public AMIs: Posted May 9, 2024; tags | headline, amazon, data loss, flaw, password; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec