CVE-2010-4707

Name of the Vulnerable Software and Affected Versions Linux-PAM versions 1.1.2 and earlier pam-devel-1.1.1 pam-debuginfo-1.1.1 pam-1.1.1

Description The issue is related to the pam xauth module in Linux-PAM, specifically the check acl function, which does not verify that a certain ACL file is a regular file. This might allow local users to cause a denial of service via a special file. Additionally, there are multiple vulnerabilities in the pam-devel, pam-debuginfo, and pam packages in Red Hat Enterprise Linux, which can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally.

Recommendations For Linux-PAM versions 1.1.2 and earlier, consider updating to a newer version to mitigate the risk. For pam-devel-1.1.1, pam-debuginfo-1.1.1, and pam-1.1.1, restrict access to the vulnerable modules to minimize the risk of exploitation. As a temporary workaround, consider disabling the check acl function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.