CVE-2008-3825

Published: 3 October 2008

pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and earlier, when the existing_ticket option is enabled, uses incorrect privileges when reading a Kerberos credential cache, which allows local users to gain privileges by setting the KRB5CCNAME environment variable to an arbitrary cache filename and running the (1) su or (2) sudo program. NOTE: there may be a related vector involving sshd that has limited relevance.

Priority

Status

Package	Release	Status
libpam-krb5 Launchpad, Ubuntu, Debian	dapper	Not vulnerable (code not present)
	feisty	Not vulnerable (code not present)
	gutsy	Not vulnerable (code not present)
	hardy	Not vulnerable (code not present)
	upstream	Not vulnerable (code not present)

References

https://www.cve.org/CVERecord?id=CVE-2008-3825
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.