Back to search
CVE-2008-2516
Published: Jun 3, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
pam_sm_authenticate in pam_pgsql.c in libpam-pgsql 0.6.3 does not properly consider operator precedence when evaluating the success of a pam_get_pass function call, which allows local users to gain privileges via a SIGINT signal when this function is executing, as demonstrated by a CTRL-C sequence at a sudo password prompt in an "auth sufficient pam_pgsql.so" configuration.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30391
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1654
vdb-entry
x_refsource_VUPEN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=481970
x_refsource_CONFIRM
libpampgsql-pamsm-security-bypass(42653)
vdb-entry
x_refsource_XF
http://sourceforge.net/project/shownotes.php?release_id=601775
x_refsource_CONFIRM
1020111
vdb-entry
x_refsource_SECTRACK
29360
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now