Back to search
CVE-2011-4122
Published: Nov 17, 2011
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by a .. in the -c option to kcheckpass.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://stealth.openwall.net/xSports/pamslam
x_refsource_MISC
46756
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20111207 Disputing CVE-2011-4122
mailing-list
x_refsource_MLIST
http://trac.des.no/openpam/changeset/478/trunk/lib/openpam_configure.c
x_refsource_CONFIRM
openpam-Pamstart-privilege-escalation(71205)
vdb-entry
x_refsource_XF
76945
vdb-entry
x_refsource_OSVDB
http://c-skills.blogspot.com/2011/11/openpam-trickery.html
x_refsource_MISC
[oss-security] 20111208 Re: Disputing CVE-2011-4122
mailing-list
x_refsource_MLIST
46804
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now