Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2006-7108

Опубликовано: 04 мар. 2007
Источник: nvd
CVSS2: 4.1
EPSS Низкий

Описание

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:andries_brouwer:util-linux:2.12a:*:*:*:*:*:*:*

EPSS

Процентиль: 23%
0.00072
Низкий

4.1 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2006-7108

ubuntu
больше 18 лет назад

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

redhat логотип

CVE-2006-7108

redhat
больше 19 лет назад

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

debian логотип

CVE-2006-7108

debian
больше 18 лет назад

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when auth ...

github логотип

GHSA-224c-qxxc-fqx7

github
около 3 лет назад

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

EPSS

Процентиль: 23%
0.00072
Низкий

4.1 Medium

CVSS2

Дефекты

CWE-264