Описание
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System Security Services Daemon (SSSD) 1.5.x before 1.5.7, when automatic ticket renewal and offline authentication are configured, uses a pathname string as a password, which allows local users to bypass Kerberos authentication by listing the /tmp directory to obtain the pathname.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.5.8-0ubuntu2 |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | not-affected | |
| natty | not-affected | 1.2.1-4.1ubuntu3 |
| oneiric | not-affected | 1.5.8-0ubuntu2 |
| upstream | released | 1.5.7 |
Показывать по
Ссылки на источники
EPSS
3.7 Low
CVSS2
Связанные уязвимости
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System Security Services Daemon (SSSD) 1.5.x before 1.5.7, when automatic ticket renewal and offline authentication are configured, uses a pathname string as a password, which allows local users to bypass Kerberos authentication by listing the /tmp directory to obtain the pathname.
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in Sy ...
The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System Security Services Daemon (SSSD) 1.5.x before 1.5.7, when automatic ticket renewal and offline authentication are configured, uses a pathname string as a password, which allows local users to bypass Kerberos authentication by listing the /tmp directory to obtain the pathname.
EPSS
3.7 Low
CVSS2