CVE-2011-5054

EPSS 0.04% · P12 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-5054

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service name, a different vulnerability than CVE-2011-4122. NOTE: the vendor indicates that the possibility of resultant privilege escalation may be "a bit far-fetched."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

kcheckpass pam_start函数授权问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

kcheckpass中存在漏洞，该漏洞源于kcheckpass经常在setuid环境中向pam_start函数传递用户提供的论证。本地用户可利用该漏洞调用任意配置PAM栈，可能借助任意有效PAM服务器名称触发无意识的副作用。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-5054

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-5054

请登录查看更多情报信息。

http://c-skills.blogspot.com/2011/11/openpam-trickery.htmlx_refsource_MISC
kcheckpass pam_start privilege escalation CVE-2011-5054 Vulnerability Reportvdb-entryx_refsource_XF
http://openwall.com/lists/oss-security/2011/12/07/3mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2011/12/27/3mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2011/12/27/1mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2012/01/02/10mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2011/12/23/8mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2012/01/02/11mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2011/12/08/9mailing-listx_refsource_MLIST
http://openwall.com/lists/oss-security/2011/12/28/5mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2011-5054

Same Patch Batch · n/a · 2012-01-06 · 11 CVEs total

CVE-2011-5053		Wi-Fi Protected Setup信息泄露漏洞
CVE-2011-4616		Perl HTML::Template::Pro模块跨站脚本漏洞
CVE-2012-0287		WordPress跨站脚本漏洞
CVE-2011-4108		OpenSSL加密问题漏洞
CVE-2011-4109		OpenSSL资源管理错误漏洞
CVE-2011-4576		OpenSSL加密问题漏洞
CVE-2011-4577		OpenSSL资源管理错误漏洞
CVE-2011-4619		OpenSSL资源管理错误漏洞
CVE-2012-0027		OpenSSL资源管理错误漏洞
CVE-2012-0390		GnuTLS加密问题漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-5054

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-5054

I. Basic Information for CVE-2011-5054

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-5054

III. Intelligence Information for CVE-2011-5054

Same Patch Batch · n/a · 2012-01-06 · 11 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-5054

Leave a comment