VULHUB ™

A weakness has been reported in the pam_timestamp_check implementation for Red Hat 9.0 and other distributions that may be derived from this version or include this functionality. Ticket contents are not sufficiently verified, allowing for tickets to be spoofed. This weakness could permit privilege escalation attacks in combination with other vulnerabilities, such as temporary file issues that permit corruption of files in privileged directories.

A weakness has been reported in the pam_timestamp_check implementation for Red Hat 9.0 and other distributions that may be derived from this version or include this functionality. Ticket contents are not sufficiently verified, allowing for tickets to be spoofed. This weakness could permit privilege escalation attacks in combination with other vulnerabilities, such as temporary file issues that permit corruption of files in privileged directories.