Lucene search
HistoryNov 29, 2009 - 1:07 p.m.
CVE-2009-4081
cve-2009-4081
untrusted search path vulnerability
dstat
local users
privileges
trojan horse
python module
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.8%
Untrusted search path vulnerability in dstat before r3199 allows local users to gain privileges via a Trojan horse Python module in the current working directory, a different vulnerability than CVE-2009-3894.
Affected configurations
Node
dag.wieersdstatRangeβ€0.6.9
ORdag.wieersdstatMatch0.1
ORdag.wieersdstatMatch0.2
ORdag.wieersdstatMatch0.3
ORdag.wieersdstatMatch0.4
ORdag.wieersdstatMatch0.5
ORdag.wieersdstatMatch0.5.2
ORdag.wieersdstatMatch0.5.3
ORdag.wieersdstatMatch0.5.4
ORdag.wieersdstatMatch0.5.5
ORdag.wieersdstatMatch0.5.6
ORdag.wieersdstatMatch0.5.7
ORdag.wieersdstatMatch0.5.8
ORdag.wieersdstatMatch0.5.9
ORdag.wieersdstatMatch0.5.10
ORdag.wieersdstatMatch0.6.0
ORdag.wieersdstatMatch0.6.1
ORdag.wieersdstatMatch0.6.2
ORdag.wieersdstatMatch0.6.3
ORdag.wieersdstatMatch0.6.4
ORdag.wieersdstatMatch0.6.5
ORdag.wieersdstatMatch0.6.6
ORdag.wieersdstatMatch0.6.7
ORdag.wieersdstatMatch0.6.8
Related
openvas
openvas
Mandriva Security Advisory MDVSA-2009:341 (dstat)
2009-12-30 00:00:00
Mandriva Security Advisory MDVSA-2009:341 (dstat)
2009-12-30 00:00:00
Fedora Core 11 FEDORA-2009-12663 (dstat)
2009-12-10 00:00:00
ubuntucve
ubuntucve
CVE-2009-4081
2009-11-29 00:00:00
CVE-2009-3894
2009-11-29 00:00:00
prion
prion
Design/Logic Flaw
2009-11-29 13:07:00
Design/Logic Flaw
2009-11-29 13:07:00
debiancve
debiancve
CVE-2009-4081
2009-11-29 13:07:52
CVE-2009-3894
2009-11-29 13:07:52
cvelist
cvelist
CVE-2009-4081
2009-11-27 20:00:00
CVE-2009-3894
2009-11-27 20:00:00
seebug
seebug
Dstat sys.pathζη΄’θ·―εΎζ¬ε°ζιζεζΌζ΄
2009-12-12 00:00:00
nvd
nvd
CVE-2009-4081
2009-11-29 13:07:52
CVE-2009-3894
2009-11-29 13:07:52
securityvulns
securityvulns
[resent] [ GLSA 200911-04 ] dstat: Untrusted search path
2009-11-26 00:00:00
dstat privilege escalation
2009-11-26 00:00:00
nessus
nessus
Scientific Linux Security Update : dstat on SL5.x i386/x86_64
2012-08-01 00:00:00
Fedora 11 : dstat-0.6.9-5.fc11 (2009-12663)
2009-12-07 00:00:00
GLSA-200911-04 : dstat: Untrusted search path
2009-11-30 00:00:00
redhat
redhat
(RHSA-2009:1619) Moderate: dstat security update
2009-11-30 00:00:00
oraclelinux
oraclelinux
dstat security update
2009-11-30 00:00:00
gentoo
gentoo
dstat: Untrusted search path
2009-11-25 00:00:00
cve
cve
CVE-2009-3894
2009-11-29 13:07:52
centos
centos
dstat security update
2009-12-17 12:39:29
fedora
fedora
[SECURITY] Fedora 11 Update: dstat-0.6.9-5.fc11
2009-12-04 23:50:44
[SECURITY] Fedora 12 Update: dstat-0.7.0-1.fc12
2009-12-04 23:55:01
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.8%
Related for CVE-2009-4081