Max CVSS | 6.9 | Min CVSS | 3.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-3435 | 4.7 |
The (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) before 1.1.2 use root privileges during read access to files and directories that belong to arbitrary user accounts, which might allow local users to obtain sensitive information by leve
|
13-02-2023 - 04:24 | 24-01-2011 - 18:00 | |
CVE-2010-3316 | 3.3 |
The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executi
|
13-02-2023 - 04:23 | 24-01-2011 - 18:00 | |
CVE-2010-3853 | 6.9 |
pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a s
|
03-01-2019 - 15:01 | 24-01-2011 - 18:00 | |
CVE-2010-4707 | 4.9 |
The check_acl function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.2 and earlier does not verify that a certain ACL file is a regular file, which might allow local users to cause a denial of service (resource consumption) via a
|
03-01-2019 - 15:01 | 24-01-2011 - 19:00 |