Lucene search
Ubuntu.comUB:CVE-2011-1758HistoryMay 26, 2011 - 12:00 a.m.
CVE-2011-1758
2011-05-2600:00:00
ubuntu.com
ubuntu.com
10
CVSS2
3.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
EPSS
0
Percentile
5.1%
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System
Security Services Daemon (SSSD) 1.5.x before 1.5.7, when automatic ticket
renewal and offline authentication are configured, uses a pathname string
as a password, which allows local users to bypass Kerberos authentication
by listing the /tmp directory to obtain the pathname.
Related
nvd
nvd
CVE-2011-1758
2011-05-26 18:55:02
prion
prion
Design/Logic Flaw
2011-05-26 18:55:00
fedora
fedora
[SECURITY] Fedora 15 Update: sssd-1.5.7-1.fc15
2011-05-05 05:00:02
[SECURITY] Fedora 14 Update: sssd-1.5.7-1.fc14
2011-05-05 18:24:11
nessus
nessus
Fedora 14 : sssd-1.5.7-1.fc14 (2011-5815)
2011-05-06 00:00:00
Fedora 15 : sssd-1.5.7-1.fc15 (2011-6279)
2011-05-05 00:00:00
cvelist
cvelist
CVE-2011-1758
2011-05-26 18:00:00
cve
cve
CVE-2011-1758
2011-05-26 18:55:02
debiancve
debiancve
CVE-2011-1758
2011-05-26 18:55:02
openvas
openvas
Fedora Update for sssd FEDORA-2011-5815
2011-05-06 00:00:00
Fedora Update for sssd FEDORA-2011-5815
2011-05-06 00:00:00
osv
osv
libipa_hbac-devel-1.14.2-3.1 on GA media
2024-06-15 00:00:00
CVSS2
3.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
EPSS
0
Percentile
5.1%
Related for UB:CVE-2011-1758