Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2010-3316
HistoryJan 24, 2011 - 6:00 p.m.

CVE-2010-3316

2011-01-2418:00:01
Debian Security Bug Tracker
security-tracker.debian.org
13

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

10.3%

JSON

The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executing a program that relies on the pam_xauth PAM check.

Related

cvelist 1
cve 1
prion 1
nvd 1
veracode 1
nessus 23
suse 5
fedora 3
openvas 20
securityvulns 3
centos 1
oraclelinux 2
redhat 2
ubuntucve 1
vmware 2
ubuntu 2
gentoo 1
cvelist
cvelist
CVE-2010-3316
2011-01-24 17:00:00
cve
cve
CVE-2010-3316
2011-01-24 18:00:01
prion
prion
Design/Logic Flaw
2011-01-24 18:00:00
nvd
nvd
CVE-2010-3316
2011-01-24 18:00:01
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:47:50
nessus
nessus
RHEL 3 : pam (Unpatched Vulnerability)
2024-06-03 00:00:00
Fedora 13 : pam-1.1.1-6.fc13 (2010-17112)
2010-11-05 00:00:00
RHEL 4 : pam (Unpatched Vulnerability)
2024-06-03 00:00:00
suse
suse
pam: fixing stack overflow (CVE-2011-3148), a local DoS (CVE-2011-3149) and CVE-2010-3316. (important)
2011-11-03 00:08:35
Security update for pam (important)
2011-11-02 23:08:31
Security update for pam (important)
2011-11-04 15:08:22
fedora
fedora
[SECURITY] Fedora 14 Update: pam-1.1.1-6.fc14
2010-11-06 23:42:52
[SECURITY] Fedora 13 Update: pam-1.1.1-6.fc13
2010-11-04 23:28:57
[SECURITY] Fedora 12 Update: pam-1.1.1-6.fc12
2010-11-17 23:16:19
openvas
openvas
Fedora Update for pam FEDORA-2010-17155
2010-12-02 00:00:00
RedHat Update for pam RHSA-2010:0819-01
2010-11-16 00:00:00
Fedora Update for pam FEDORA-2010-17133
2010-11-23 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:220 ] pam
2010-11-08 00:00:00
PAM authentuication modules multiple security vulnerabilities
2010-11-08 00:00:00
VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-10 00:00:00
centos
centos
pam security update
2010-11-01 21:56:05
oraclelinux
oraclelinux
pam security update
2010-11-01 00:00:00
pam security update
2011-02-10 00:00:00
redhat
redhat
(RHSA-2010:0819) Moderate: pam security update
2010-11-01 00:00:00
(RHSA-2010:0891) Moderate: pam security update
2010-11-16 00:00:00
ubuntucve
ubuntucve
CVE-2010-3316
2011-01-24 00:00:00
vmware
vmware
VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-07 00:00:00
VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
2011-03-07 00:00:00
ubuntu
ubuntu
PAM vulnerabilities
2011-05-30 00:00:00
PAM regression
2011-05-31 00:00:00
gentoo
gentoo
Linux-PAM: Multiple vulnerabilities
2012-06-25 00:00:00

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

10.3%

JSON
Related for DEBIANCVE:CVE-2010-3316
cvelist1cve1prion1nvd1veracode1nessus23suse5fedora3openvas20securityvulns3centos1oraclelinux2redhat2ubuntucve1vmware2ubuntu2gentoo1