CVE-2010-3853 — Linux-pam vulnerability

10 documents9 sources

Severity

6.9MEDIUMNVD

EPSS

0.1%

top 83.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PAM Debian PAM Linux-pam +4 more

Timeline

PublishedJan 24

Latest updateMay 14

Description

pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a setuid program that relies on the pam_namespace PAM check, as demonstrated by the sudo program.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages7 packages

▶NVDlinux-pam/linux-pam1.1.2+23

▶debiandebian/pam< pam 1.1.3-1 (bookworm)

▶Debianpam/pam< 1.1.3-1+3

▶vmwarevmware/vmware_esxi

▶vmwarevmware/vmware_tools

Patches

Patch: pam.cvs.sourceforge.net ↗Patch: bugzilla.redhat.com ↗Patch: pam.cvs.sourceforge.net ↗

🔴Vulnerability Details

GHSA

GHSA-94f7-h6jj-cq78: pam_namespace↗2022-05-14

▶

OSV

CVE-2010-3853: pam_namespace↗2011-01-24

▶

💥Exploits & PoCs

Exploit-DB

IBM Tivoli Storage Manager Express CAD Service - Remote Buffer Overflow (Metasploit) (1)↗2010-05-09

▶

📋Vendor Advisories

Ubuntu

PAM regression↗2011-05-31

▶

Ubuntu

PAM vulnerabilities↗2011-05-30

▶

VMware

VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.↗2011-03-07

▶

Red Hat

pam: pam_namespace executes namespace.init with service's environment↗2010-10-22

▶

Debian

CVE-2010-3853: pam - pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 ...↗2010

▶

💬Community

Bugzilla

CVE-2010-3853 pam: pam_namespace executes namespace.init with service's environment↗2010-10-14

▶