Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

0

CVE-2010-3316

Disclosure Date: January 24, 2011 •

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executing a program that relies on the pam_xauth PAM check.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

References

Canonical

CVE-2010-3316 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3316)

Advisory

[oss-security] 20100927 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/27/5)

[oss-security] 20100921 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/21/3)

GLSA-201206-31 (http://security.gentoo.org/glsa/glsa-201206-31.xml)

[security-announce] 20110307 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm (http://lists.vmware.com/pipermail/security-announce/2011/000126.html)

ADV-2011-0606 (http://www.vupen.com/english/advisories/2011/0606)

https://bugzilla.redhat.com/show_bug.cgi?id=637898

20110308 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. (http://www.securityfocus.com/archive/1/516909/100/0/threaded)

[oss-security] 20100924 Re: Minor security flaw with pam_xauth (http://www.openwall.com/lists/oss-security/2010/09/24/2)

[oss-security] 20100816 Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/08/16/2)

[oss-security] 20100921 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/21/8)

[oss-security] 20100928 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/27/10)

[oss-security] 20100927 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/27/4)

http://www.mandriva.com/security/advisories?name=MDVSA-2010:220

SECUNIA-49711 (http://secunia.com/advisories/49711)

http://git.altlinux.org/people/ldv/packages?p=pam.git;a=commit;h=06f882f30092a39a1db867c9744b2ca8d60e4ad6

[oss-security] 20100928 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/09/27/7)

http://www.redhat.com/support/errata/RHSA-2010-0891.html

[oss-security] 20101025 Re: Minor security flaw with pam_xauth (http://openwall.com/lists/oss-security/2010/10/25/2)

http://www.redhat.com/support/errata/RHSA-2010-0819.html

http://www.vmware.com/security/advisories/VMSA-2011-0004.html

Miscellaneous

https://sourceforge.net/tracker?func=detail&aid=3028213&group_id=6663&atid=106663

http://git.altlinux.org/people/ldv/packages/?p=pam.git%3Ba=commit%3Bh=06f882f30092a39a1db867c9744b2ca8d60e4ad6

https://sourceforge.net/tracker/?func=detail&aid=3028213&group_id=6663&atid=106663

Rapid7

Technical Analysis