CVE-2010-0832

pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/40512	Vendor Advisory
http://twitter.com/jonoberheide/statuses/18009527979
http://www.exploit-db.com/exploits/14273	Exploit
http://www.h-online.com/security/news/item/Ubuntu-closes-root-hole-1034618.html
http://www.osvdb.org/66116
http://www.securityfocus.com/bid/41465	Exploit Patch
http://www.ubuntu.com/usn/USN-959-1	Vendor Advisory
http://www.vupen.com/english/advisories/2010/1747	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/60194
http://secunia.com/advisories/40512	Vendor Advisory
http://twitter.com/jonoberheide/statuses/18009527979
http://www.exploit-db.com/exploits/14273	Exploit
http://www.h-online.com/security/news/item/Ubuntu-closes-root-hole-1034618.html
http://www.osvdb.org/66116
http://www.securityfocus.com/bid/41465	Exploit Patch
http://www.ubuntu.com/usn/USN-959-1	Vendor Advisory
http://www.vupen.com/english/advisories/2010/1747	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/60194

Configurations

Configuration 1 (hide)

cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*

History

21 Nov 2024, 01:13

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/40512 - Vendor Advisory~~	() http://secunia.com/advisories/40512 - Vendor Advisory
References	~~() http://twitter.com/jonoberheide/statuses/18009527979 -~~	() http://twitter.com/jonoberheide/statuses/18009527979 -
References	~~() http://www.exploit-db.com/exploits/14273 - Exploit~~	() http://www.exploit-db.com/exploits/14273 - Exploit
References	~~() http://www.h-online.com/security/news/item/Ubuntu-closes-root-hole-1034618.html -~~	() http://www.h-online.com/security/news/item/Ubuntu-closes-root-hole-1034618.html -
References	~~() http://www.osvdb.org/66116 -~~	() http://www.osvdb.org/66116 -
References	~~() http://www.securityfocus.com/bid/41465 - Exploit, Patch~~	() http://www.securityfocus.com/bid/41465 - Exploit, Patch
References	~~() http://www.ubuntu.com/usn/USN-959-1 - Vendor Advisory~~	() http://www.ubuntu.com/usn/USN-959-1 - Vendor Advisory
References	~~() http://www.vupen.com/english/advisories/2010/1747 - Vendor Advisory~~	() http://www.vupen.com/english/advisories/2010/1747 - Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/60194 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/60194 -

Information

Published : 2010-07-12 16:30

Updated : 2025-04-11 00:51

NVD link : CVE-2010-0832

Mitre link : CVE-2010-0832

CVE.ORG link : CVE-2010-0832

JSON object : View

Products Affected

canonical

ubuntu_linux

CWE

CWE-59

Improper Link Resolution Before File Access ('Link Following')

6.9 /10