MDKSA-2000:029

Package name

pam

Date

2000-08-01

Advisory ID

MDKSA-2000:029

Affected versions

6.1 i586 , 6.0 i586 , 7.0 i586 , 7.1 i586

Problem description

There is a problem with the pam_console module that incorrectly identifies remote X logins for displays other than :0 (for example, :1, :2, etc.) as being local displays, thus giving control of the console to the remote user. Because the remote user has control of the console they are able to issue commands to reboot the remote system after providing their password. Please note that this vulnerability is only exploitable if the system is running a graphical login manager like gdm, kdm, or xdm and if XDMCP is enabled and remote access is granted. Users are highly recommended to upgrade to this version which fixes the exploit (thanks to RedHat).

Updated packages

6.1 i586

 a1c1dc3bbd914cb784d967ab0c4b3872  6.1/RPMS/pam-0.72-7mdk.i586.rpm
45c768c2039bb0ee29a271fe9a5b70f1  6.1/RPMS/pam-devel-0.72-7mdk.i586.rpm
9088d87ed13c41dda17dd79f0b1d024c  6.1/RPMS/pam-doc-0.72-7mdk.i586.rpm
8487df775c4b3f775c10b2c636b87710  6.1/SRPMS/pam-0.72-7mdk.src.rpm

6.0 i586

 9f3e95d37e6867e6d4af5ccb722fda5f  6.0/RPMS/pam-0.72-7mdk.i586.rpm
25f54cd5a2c596fc987241cc10a42fe8  6.0/RPMS/pam-devel-0.72-7mdk.i586.rpm
9654560a8d90e3f73311bafb74d8ca2a  6.0/RPMS/pam-doc-0.72-7mdk.i586.rpm
8487df775c4b3f775c10b2c636b87710  6.0/SRPMS/pam-0.72-7mdk.src.rpm

7.0 i586

 29b7ed4efb52ba85c228eb7a99fe07a2  7.0/RPMS/pam-0.72-7mdk.i586.rpm
9819bbdc0074bc395aa7c76f979dc152  7.0/RPMS/pam-devel-0.72-7mdk.i586.rpm
dea6b68ca13535c2b01198848f430e80  7.0/RPMS/pam-doc-0.72-7mdk.i586.rpm
8487df775c4b3f775c10b2c636b87710  7.0/SRPMS/pam-0.72-7mdk.src.rpm

7.1 i586

 75c7e5a003efc4ab1f6907249a96adf3  7.1/RPMS/pam-0.72-7mdk.i586.rpm
1a1a1dd397675fedd998c0e726ff97ea  7.1/RPMS/pam-devel-0.72-7mdk.i586.rpm
b50f0af977548ccaf61b05c9d09354e4  7.1/RPMS/pam-doc-0.72-7mdk.i586.rpm
8487df775c4b3f775c10b2c636b87710  7.1/SRPMS/pam-0.72-7mdk.src.rpm