Published: 12/07/2010 Updated: 17/08/2017

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 700

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

pam_motd (aka the MOTD module) in libpam-modules prior to 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules prior to 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical ubuntu linux 10.04
canonical ubuntu linux 9.10

Root privilege escalation via symlink following ...

Gain root by following symlinks ...

#!/bin/bash # # Exploit Title: Ubuntu PAM MOTD local root # Date: July 9, 2010 # Author: Anonymous # Software Link: packagesubuntucom/ # Version: pam-110 # Tested on: Ubuntu 910 (Karmic Koala), Ubuntu 1004 LTS (Lucid Lynx) # CVE: CVE-2010-0832 # Patch Instructions: sudo aptitude -y update; sudo aptitude -y install libpam~n~i # Referenc ...

#!/bin/sh # # EDB Note: Updated exploit ~ wwwexploit-dbcom/exploits/14339/ # # Exploit Title: Ubuntu PAM MOTD file tampering (privilege escalation) # Date: July 7, 2010 # Author: Kristian Erik Hermansen <kristianhermansen@gmailcom> # Software Link: packagesubuntucom/ # Version: pam-110 # Tested on: Ubuntu 1004 LTS (Luc ...

Ubuntu PAM MOTD local root exploit ...

Ubuntu PAM MOTD file tampering privilege escalation exploit ...

CWE-59 http://www.vupen.com/english/advisories/2010/1747 http://www.securityfocus.com/bid/41465 http://www.ubuntu.com/usn/USN-959-1 http://www.osvdb.org/66116 http://www.exploit-db.com/exploits/14273 http://secunia.com/advisories/40512 http://www.h-online.com/security/news/item/Ubuntu-closes-root-hole-1034618.html http://twitter.com/jonoberheide/statuses/18009527979 https://exchange.xforce.ibmcloud.com/vulnerabilities/60194 https://nvd.nist.gov https://usn.ubuntu.com/959-1/https://www.exploit-db.com/exploits/14339/

CVE-2010-0832

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect