Local Privilege Escalation in Ubuntu Password Command
CVE-2006-3378

Currently unrated

Key Information:

Vendor: Ubuntu
Status: Ubuntu Linux
Vendor: CVE Published:; 6 July 2006

What is CVE-2006-3378?

The passwd command in the shadow package for Ubuntu versions 5.04 through 6.06 LTS contains a flaw that arises when the command is executed with certain flags (-f, -g, or -s). This flaw prevents proper validation of the return code from a setuid call, which potentially allows local users to gain root privileges if the setuid operation fails due to conditions such as PAM failures or resource limitations. This vulnerability underscores the importance of rigorous error checking in privileged commands to prevent unauthorized access.

References

http://secunia.com/advisories/21480

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/26995

vdb-entryx_refsource_OSVDB

http://www.debian.org/security/2006/dsa-1150

vendor-advisoryx_refsource_DEBIAN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 6, 2006
Vulnerability Reserved
Jul 6, 2006