| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.68290 |
| Category: | Red Hat Local Security Checks |
| Title: | RedHat Security Advisory RHSA-2010:0819 |
| Summary: | Redhat Security Advisory RHSA-2010:0819 |
| Description: | The remote host is missing updates announced in advisory RHSA-2010:0819. Pluggable Authentication Modules (PAM) provide a system whereby administrators can set up authentication policies without having to recompile programs that handle authentication. It was discovered that the pam_namespace module executed the external script namespace.init with an unchanged environment inherited from an application calling PAM. In cases where such an environment was untrusted (for example, when pam_namespace was configured for setuid applications such as su or sudo), a local, unprivileged user could possibly use this flaw to escalate their privileges. (CVE-2010-3853) It was discovered that the pam_mail module used root privileges while accessing users' files. In certain configurations, a local, unprivileged user could use this flaw to obtain limited information about files or directories that they do not have access to. (CVE-2010-3435) It was discovered that the pam_xauth module did not verify the return values of the setuid() and setgid() system calls. A local, unprivileged user could use this flaw to execute the xauth command with root privileges and make it read an arbitrary input file. (CVE-2010-3316) Red Hat would like to thank Sebastian Krahmer of the SuSE Security Team for reporting the CVE-2010-3435 issue. All pam users should upgrade to these updated packages, which contain backported patches to correct these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2010-0819.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : High |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-3316 Bugtraq: 20110308 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. (Google Search) http://www.securityfocus.com/archive/1/archive/1/516909/100/0/threaded http://openwall.com/lists/oss-security/2010/08/16/2 http://openwall.com/lists/oss-security/2010/09/21/3 http://openwall.com/lists/oss-security/2010/09/21/8 http://www.openwall.com/lists/oss-security/2010/09/24/2 http://openwall.com/lists/oss-security/2010/09/27/4 http://openwall.com/lists/oss-security/2010/09/27/5 http://openwall.com/lists/oss-security/2010/09/27/7 http://openwall.com/lists/oss-security/2010/09/27/10 http://openwall.com/lists/oss-security/2010/10/25/2 http://lists.vmware.com/pipermail/security-announce/2011/000126.html https://sourceforge.net/tracker/?func=detail&aid=3028213&group_id=6663&atid=106663 http://security.gentoo.org/glsa/glsa-201206-31.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:220 http://www.redhat.com/support/errata/RHSA-2010-0819.html http://www.redhat.com/support/errata/RHSA-2010-0891.html http://secunia.com/advisories/49711 http://www.vupen.com/english/advisories/2011/0606 Common Vulnerability Exposure (CVE) ID: CVE-2010-3435 http://openwall.com/lists/oss-security/2010/09/27/8 Common Vulnerability Exposure (CVE) ID: CVE-2010-3853 |
| Copyright | Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.