Security Advisory

CVE-2006-7108

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-03-04 22:00:00

Last updated 2024-08-07 20:50:06

Assigner mitre

State PUBLISHED

Description

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

← Browse all CVEs View on cve.org ↗