PT-2008-6742 · Sun+1 · Sun Solaris+2

Published

2008-12-19

Updated

2017-09-29

CVE-2008-5690

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 8, 9, and 10 OpenSolaris build snv 01 through snv 104

Description The issue is related to the Kerberos credential renewal feature, which allows local users to cause an authentication failure due to incorrect cache file permissions and the lack of credential storage by the store cred function in pam krb5.

Recommendations For Sun Solaris versions 8, 9, and 10, consider updating the pam krb5 module to properly handle credential storage and cache file permissions. For OpenSolaris build snv 01 through snv 104, restrict access to the store cred function in pam krb5 until a proper update is available to address the incorrect cache file permissions and credential storage issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2008-5690

Affected Products

Opensolaris

Sun Solaris

Pam Krb5

PT-2008-6742 · Sun+1 · Sun Solaris+2

CVE-2008-5690

Weakness Enumeration

Related Identifiers

Affected Products

References · 11