COMMAND

    pam

SYSTEMS AFFECTED

    Linux

PROBLEM

    There is a  problem with the  pam_console module that  incorrectly
    identifies  remote  X  logins  for  displays  other  than  :0 (for
    example,  :1,  :2,  etc.)  as  being  local  displays, thus giving
    control of  the console  to the  remote user.   Because the remote
    user has control  of the console  they are able  to issue commands
    to reboot the remote system after providing their password.

    Please note  that this  vulnerability is  only exploitable  if the
    system is running a graphical login manager like gdm, kdm, or  xdm
    and if XDMCP is enabled and  remote access is granted.  Users  are
    highly  recommended  to  upgrade  to  this version which fixes the
    exploit (thanks to RedHat).

SOLUTION

    For Linux Mandrake:

        6.0/RPMS/pam-0.72-7mdk.i586.rpm
        6.0/RPMS/pam-devel-0.72-7mdk.i586.rpm
        6.0/RPMS/pam-doc-0.72-7mdk.i586.rpm
        6.0/SRPMS/pam-0.72-7mdk.src.rpm

        6.1/RPMS/pam-0.72-7mdk.i586.rpm
        6.1/RPMS/pam-devel-0.72-7mdk.i586.rpm
        6.1/RPMS/pam-doc-0.72-7mdk.i586.rpm
        6.1/SRPMS/pam-0.72-7mdk.src.rpm

        7.0/RPMS/pam-0.72-7mdk.i586.rpm
        7.0/RPMS/pam-devel-0.72-7mdk.i586.rpm
        7.0/RPMS/pam-doc-0.72-7mdk.i586.rpm
        7.0/SRPMS/pam-0.72-7mdk.src.rpm

        7.1/RPMS/pam-0.72-7mdk.i586.rpm
        7.1/RPMS/pam-devel-0.72-7mdk.i586.rpm
        7.1/RPMS/pam-doc-0.72-7mdk.i586.rpm
        7.1/SRPMS/pam-0.72-7mdk.src.rpm

    RedHat issued patch as well.

    SuSE Linux does not contain  the said pam-module because it  isn't
    included  in  the  official  pam  release.   The  idea  of  it  is
    intriguing, but SuSE  decided not to  include the module  into the
    distribution as a consequence  of the problems that  accompany its
    use.