Lucene search
HistoryApr 04, 2011 - 12:27 p.m.
CVE-2011-0461
cve-2011-0461
aaa_base
symlink attack
suse
opensuse 11.2
opensuse 11.3
mtab
security vulnerability
nvd
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
/etc/init.d/boot.localfs in the aaa_base package before 11.2-43.48.1 in SUSE openSUSE 11.2, and before 11.3-8.7.1 in openSUSE 11.3, allows local users to overwrite arbitrary files via a symlink attack on /dev/shm/mtab.
Affected configurations
Node
opensuseopensuseMatch11.2
ORopensuseopensuseMatch11.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| opensuse:opensuse | opensuse | eq | 11.2 |
| opensuse:opensuse | opensuse | eq | 11.3 |
Related
nessus
nessus
openSUSE Security Update : aaa_base (openSUSE-SU-2011:0171-1)
2011-05-05 00:00:00
SuSE 11.1 Security Update : aaa_base (SAT Patch Number 3910)
2011-05-13 00:00:00
openSUSE Security Update : aaa_base (openSUSE-SU-2011:0171-1)
2014-06-13 00:00:00
prion
prion
Cross site scripting
2011-04-04 12:27:00
cvelist
cvelist
CVE-2011-0461
2011-04-01 21:00:00
nvd
nvd
CVE-2011-0461
2011-04-04 12:27:36
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2011-0461