Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1160

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-1160
Last Modified 10 Sep 2008 03:13:58
Published 19 Feb 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1160

Summary

The default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local users to gain root privileges by stealing the cookies from a temporary .xauth file, which is created with the original user's credentials after root uses su.

Vulnerable Systems

Operating System

  • Redhat Linux 7.1

  • Redhat Linux 7.2

  • Redhat Linux 7.3

  • Redhat Linux 8.0


References

CERT-VN - VU#911505

BUGTRAQ - 20021214 BDT_AV200212140001: Insecure default: Using pam_xauth for su from sh-utils package

XF - linux-pamxauth-gain-privileges(11254)

BID - 6753

REDHAT - RHSA-2003:035

REDHAT - RHSA-2003:028

MANDRAKE - MDKSA-2003:017

SUNALERT - 55760

CONECTIVA - CLA-2003:693


Last Updated: 27 May 2016 10:37:12