Vulnerability CVE-2006-2194


Published: 2006-07-05   Modified: 2012-02-12

Description:
The winbind plugin in pppd for ppp 2.4.4 and earlier does not check the return code from the setuid function call, which might allow local users to gain privileges by causing setuid to fail, such as exceeding PAM limits for the maximum number of user processes, which prevents the winbind NTLM authentication helper from dropping privileges.

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Samba -> PPP 

 References:
http://www.securityfocus.com/bid/18849
http://www.debian.org/security/2006/dsa-1106
http://secunia.com/advisories/20996
http://secunia.com/advisories/20987
http://secunia.com/advisories/20967
http://www.ubuntu.com/usn/usn-310-1
http://www.osvdb.org/26994
http://secunia.com/advisories/20963
http://www.mandriva.com/security/advisories?name=MDKSA-2006:119

Copyright 2024, cxsecurity.com

 

Back to Top