Lucene search

[email protected]CVE-2010-3853

HistoryJan 24, 2011 - 6:00 p.m.

CVE-2010-3853

2011-01-2418:00:02

[email protected]

web.nvd.nist.gov

cve-2010-3853

linux-pam

pam_namespace

security vulnerability

privilege escalation

nvd

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a setuid program that relies on the pam_namespace PAM check, as demonstrated by the sudo program.

Affected configurations

NVD

Node

linux-pamlinux-pamRange≤1.1.2

linux-pamlinux-pamMatch0.99.1.0

linux-pamlinux-pamMatch0.99.2.0

linux-pamlinux-pamMatch0.99.2.1

linux-pamlinux-pamMatch0.99.3.0

linux-pamlinux-pamMatch0.99.4.0

linux-pamlinux-pamMatch0.99.5.0

linux-pamlinux-pamMatch0.99.6.0

linux-pamlinux-pamMatch0.99.6.1

linux-pamlinux-pamMatch0.99.6.2

linux-pamlinux-pamMatch0.99.6.3

linux-pamlinux-pamMatch0.99.7.0

linux-pamlinux-pamMatch0.99.7.1

linux-pamlinux-pamMatch0.99.8.0

linux-pamlinux-pamMatch0.99.8.1

linux-pamlinux-pamMatch0.99.9.0

linux-pamlinux-pamMatch0.99.10.0

linux-pamlinux-pamMatch1.0.0

linux-pamlinux-pamMatch1.0.1

linux-pamlinux-pamMatch1.0.2

linux-pamlinux-pamMatch1.0.3

linux-pamlinux-pamMatch1.0.4

linux-pamlinux-pamMatch1.1.0

linux-pamlinux-pamMatch1.1.1

CPENameOperatorVersion
linux-pam:linux-pamlinux-pamle1.1.2
linux-pam:linux-pamlinux-pameq0.99.1.0
linux-pam:linux-pamlinux-pameq0.99.2.0
linux-pam:linux-pamlinux-pameq0.99.2.1
linux-pam:linux-pamlinux-pameq0.99.3.0
linux-pam:linux-pamlinux-pameq0.99.4.0
linux-pam:linux-pamlinux-pameq0.99.5.0
linux-pam:linux-pamlinux-pameq0.99.6.0
linux-pam:linux-pamlinux-pameq0.99.6.1
linux-pam:linux-pamlinux-pameq0.99.6.2

CPE	Name	Operator	Version
linux-pam:linux-pam	linux-pam	le	1.1.2
linux-pam:linux-pam	linux-pam	eq	0.99.1.0
linux-pam:linux-pam	linux-pam	eq	0.99.2.0
linux-pam:linux-pam	linux-pam	eq	0.99.2.1
linux-pam:linux-pam	linux-pam	eq	0.99.3.0
linux-pam:linux-pam	linux-pam	eq	0.99.4.0
linux-pam:linux-pam	linux-pam	eq	0.99.5.0
linux-pam:linux-pam	linux-pam	eq	0.99.6.0
linux-pam:linux-pam	linux-pam	eq	0.99.6.1
linux-pam:linux-pam	linux-pam	eq	0.99.6.2