info
discussion
exploit
solution
references
pam-krb5 'KRB5CCNAME' Environment Variable Local Privilege Escalation Vulnerability
References:
PAM module for MIT Kerberos
(Debian)
pam-krb5 Homepage
(Russ Allbery)
pam-krb5 security advisory (3.12 and earlier)
(Russ Allbery
)
Re: pam-krb5 security advisory (3.12 and earlier)
(Tim Skirvin
)
ASA-2009-070 (SUN 252767)
(Avaya)
pam-krb5 2009-02-11 Advisory
(Russ Allbery)
Solution 252767: A Security Vulnerability in the Solaris Kerberos PAM Module
(Sun)
Privacy Statement
Copyright 2010, SecurityFocus