Computer Security
[EN] securityvulns.ru no-pyccku


Suid utilities (vixie-cron, shadow, ppp) user limits privilege escalation
updated since 26.05.2006
Published:06.07.2006
Source:
SecurityVulns ID:6191
Type:local
Threat Level:
8/10
Description:setuid() return code is not checked. It makes it possible to execute code with root privileges by exhausting user limits.
Affected:PPP : ppp 2.4
 Shadow : shadow 4.0
 VIXIE : cron 4.1
Original documentdocumentUBUNTU, [Full-disclosure] [USN-310-1] ppp vulnerability (06.07.2006)
 documentUBUNTU, [Full-disclosure] [USN-308-1] shadow vulnerability (06.07.2006)
 documentJustin M. Forbes, rPSA-2006-0082-1 vixie-cron (26.05.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod