CVE-2010-4706

Name of the Vulnerable Software and Affected Versions Linux-PAM versions 1.1.2 and earlier

Description The issue arises from the pam sm close session function in the pam xauth module, which does not properly handle a failure to determine a certain target uid. This might allow local users to delete unintended files by executing a program that relies on the pam xauth PAM check.

Recommendations For Linux-PAM versions 1.1.2 and earlier, consider updating to a version that addresses this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.