CVE-2008-5690

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 8, 9, and 10 OpenSolaris build snv 01 through snv 104

Description The issue is related to the Kerberos credential renewal feature, which allows local users to cause an authentication failure due to incorrect cache file permissions and the lack of credential storage by the store cred function in pam krb5.

Recommendations For Sun Solaris versions 8, 9, and 10, consider updating the pam krb5 module to properly handle credential storage and cache file permissions. For OpenSolaris build snv 01 through snv 104, restrict access to the store cred function in pam krb5 until a proper update is available to address the incorrect cache file permissions and credential storage issue.