Max CVSS | 6.9 | Min CVSS | 6.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-5054 | 6.9 |
kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service nam
|
29-08-2017 - 01:30 | 06-01-2012 - 21:55 | |
CVE-2011-4122 | 6.9 |
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by
|
29-08-2017 - 01:30 | 17-11-2011 - 19:55 |