Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-1052

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2013-1052
Last Modified 22 Mar 2013 12:00:00
Published 21 Mar 2013 01:55:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2013-1052

Summary

pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.

Vulnerable Systems

Operating System

  • Canonical Ubuntu Linux 12.10


References

XF - ubuntu-cve20131052-priv-esc(82918)

UBUNTU - USN-1766-1

BID - 58550


Last Updated: 27 May 2016 11:02:06