CVE-2008-4313

A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 does not properly configure the PAM tty name, which allows remote authenticated users to bypass intended access restrictions and send requests to OpenPegasus WBEM services.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:redhat:enterprise_linux:5.0:*:server:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:client:*:*:*:*:*
cpe:2.3:a:openpegasus:openpegasus_wbem:2.7.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-11-27 00:30

Updated : 2024-02-28 11:21


NVD link : CVE-2008-4313

Mitre link : CVE-2008-4313

CVE.ORG link : CVE-2008-4313


JSON object : View

Products Affected

redhat

  • enterprise_linux_desktop
  • enterprise_linux

openpegasus

  • openpegasus_wbem
CWE
CWE-264

Permissions, Privileges, and Access Controls