Privilege Escalation via PATH Environment Variable in pam-xdg-support

CVE-2013-1052 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.