pam_krb5 Existing Ticket Configuration Option Local Privilege Escalation Vulnerability

Bugtraq ID:	31534
Class:	Design Error
CVE:	CVE-2008-3825
Remote:	No
Local:	Yes
Published:	Oct 02 2008 12:00AM
Updated:	Jun 29 2009 07:09PM
Credit:	St&eacute;phane Bertin
Vulnerable:	S.u.S.E. SUSE Linux Enterprise Server 10 S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.3 S.u.S.E. openSUSE 10.2 rPath rPath Linux 2 RedHat Fedora 9 0 RedHat Fedora 8 0 RedHat Enterprise Linux Desktop 5 client RedHat Enterprise Linux 5 server pam_krb5 pam_krb5 0 MandrakeSoft Linux Mandrake 2008.1 x86_64 MandrakeSoft Linux Mandrake 2008.1 MandrakeSoft Linux Mandrake 2008.0 x86_64 MandrakeSoft Linux Mandrake 2008.0 MandrakeSoft Linux Mandrake 2007.1 x86_64 MandrakeSoft Linux Mandrake 2007.1

Not Vulnerable: