Red Hat 'capp-lspp-config' Local Privilege Escalation Vulnerability

The 'capp-lspp-config' script is prone to a local privilege-escalation vulnerability because it creates insecure permissions on the '/etc/pam.d/system-auth-ac' file.

Local attackers can exploit this issue to escalate their privileges. This may lead to the complete compromise of affected computers.

This issue affects the 'lspp-eal4-config-ibm' and 'capp-lspp-eal4-config-hp' packages.


 

Privacy Statement
Copyright 2010, SecurityFocus