Oval Definition:oval:com.ubuntu.precise:def:20176967000
Revision Date:2017-03-17Version:1
Title:CVE-2017-6967 on Ubuntu 12.04 LTS (precise) - medium.
Description:xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-6967
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The 'xrdp' package in precise was vulnerable but has been fixed (note: '0.5.0-2+deb7u1build0.12.04.1').
    • BACK