Back to search
CVE-2011-1946
Published: Jul 7, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of these accounts.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation
mailing-list
x_refsource_MLIST
libgnomesu-setuid-privilege-escalation(67720)
vdb-entry
x_refsource_XF
48035
vdb-entry
x_refsource_BID
https://bugzilla.novell.com/show_bug.cgi?id=695627
x_refsource_CONFIRM
[oss-security] 20110530 CVE request: libgnomesu privilege escalation
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now