CVE-2002-1160

Name of the Vulnerable Software and Affected Versions pam xauth module (affected versions not specified) pam versions 0.75

Description The issue allows local users to potentially gain root privileges by exploiting the default configuration of the pam xauth module, which forwards MIT-Magic-Cookies to new X sessions. This could be achieved by stealing the cookies from a temporary .xauth file created with the original user's credentials after root uses su. The vulnerability may lead to a breach of confidentiality, integrity, and availability of protected information and can be exploited locally.

Recommendations For pam version 0.75, consider reconfiguring the pam xauth module to prevent the forwarding of MIT-Magic-Cookies to new X sessions as a temporary workaround. At the moment, there is no information about a newer version that contains a fix for this vulnerability.