PT-2013-1804 · Gnu+4 · Su+6

Jan Lieskovsky

Published

2013-02-20

Updated

2019-04-22

CVE-2012-5536

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Linux (RHEL) 6 Fedora Rawhide

Description The issue allows local users to obtain sensitive information from process memory or possibly gain privileges via crafted use of an application that relies on the pam ssh agent auth module, as demonstrated by su and sudo. This occurs because the pam ssh agent auth module calls the glibc error function instead of the error function in the OpenSSH codebase.

Recommendations For Red Hat Enterprise Linux (RHEL) 6, update the pam ssh agent auth module to use the correct error function from the OpenSSH codebase. For Fedora Rawhide, update the pam ssh agent auth module to use the correct error function from the OpenSSH codebase. As a temporary workaround, consider restricting the use of applications that rely on the pam ssh agent auth module, such as su and sudo, until a patch is available.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CESA-2013_0519

CVE-2012-5536

RHSA-2013:0519

RHSA-2013_0519

Affected Products

Centos

Fedora

Openssh

Red Hat

Glibc

Sudo

PT-2013-1804 · Gnu+4 · Su+6

CVE-2012-5536

Weakness Enumeration

Related Identifiers

Affected Products

References · 17