VYPR

pam_krb5

by Red Hat

CVEs (1)

  • CVE-2008-3825Oct 3, 2008
    risk 0.00cvss epss 0.00

    pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and earlier, when the existing_ticket option is enabled, uses incorrect privileges when reading a Kerberos credential cache, which allows local users to gain privileges by setting the KRB5CCNAME environment variable to an…