Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-0871
HistoryApr 18, 2014 - 2:55 p.m.

CVE-2012-0871

2014-04-1814:55:25
CWE-59
[email protected]
web.nvd.nist.gov
44
systemd
logind
symlink attack
x11
cve-2012-0871
security vulnerability

CVSS2

6.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.

Affected configurations

NVD
Node
systemd_projectsystemdRange037
OR
systemd_projectsystemdMatch1
OR
systemd_projectsystemdMatch2
OR
systemd_projectsystemdMatch3
OR
systemd_projectsystemdMatch4
OR
systemd_projectsystemdMatch5
OR
systemd_projectsystemdMatch6
OR
systemd_projectsystemdMatch7
OR
systemd_projectsystemdMatch8
OR
systemd_projectsystemdMatch9
OR
systemd_projectsystemdMatch10
OR
systemd_projectsystemdMatch11
OR
systemd_projectsystemdMatch12
OR
systemd_projectsystemdMatch13
OR
systemd_projectsystemdMatch14
OR
systemd_projectsystemdMatch15
OR
systemd_projectsystemdMatch16
OR
systemd_projectsystemdMatch17
OR
systemd_projectsystemdMatch18
OR
systemd_projectsystemdMatch19
OR
systemd_projectsystemdMatch20
OR
systemd_projectsystemdMatch21
OR
systemd_projectsystemdMatch22
OR
systemd_projectsystemdMatch23
OR
systemd_projectsystemdMatch24
OR
systemd_projectsystemdMatch25
OR
systemd_projectsystemdMatch26
OR
systemd_projectsystemdMatch27
OR
systemd_projectsystemdMatch28
OR
systemd_projectsystemdMatch29
OR
systemd_projectsystemdMatch30
OR
systemd_projectsystemdMatch31
OR
systemd_projectsystemdMatch32
OR
systemd_projectsystemdMatch33
OR
systemd_projectsystemdMatch34
OR
systemd_projectsystemdMatch35
OR
systemd_projectsystemdMatch36
OR
opensuseopensuseMatch12.1
VendorProductVersionCPE
systemd_projectsystemd30cpe:/a:systemd_project:systemd:30:::
systemd_projectsystemd4cpe:/a:systemd_project:systemd:4:::
systemd_projectsystemd17cpe:/a:systemd_project:systemd:17:::
systemd_projectsystemd26cpe:/a:systemd_project:systemd:26:::
systemd_projectsystemd12cpe:/a:systemd_project:systemd:12:::
systemd_projectsystemd2cpe:/a:systemd_project:systemd:2:::
systemd_projectsystemd13cpe:/a:systemd_project:systemd:13:::
systemd_projectsystemd25cpe:/a:systemd_project:systemd:25:::
systemd_projectsystemd7cpe:/a:systemd_project:systemd:7:::
systemd_projectsystemd1cpe:/a:systemd_project:systemd:1:::
Rows per page:
1-10 of 381

Related

nvd 1
openvas 2
prion 1
cvelist 1
debiancve 1
suse 1
nessus 2
fedora 1
nvd
nvd
CVE-2012-0871
2014-04-18 14:55:25
openvas
openvas
Fedora Update for systemd FEDORA-2012-2557
2012-04-02 00:00:00
Fedora Update for systemd FEDORA-2012-2557
2012-04-02 00:00:00
prion
prion
Design/Logic Flaw
2014-04-18 14:55:00
cvelist
cvelist
CVE-2012-0871
2014-04-18 14:00:00
debiancve
debiancve
CVE-2012-0871
2014-04-18 14:55:25
suse
suse
local privilege escalation in systemd
2012-02-29 17:13:59
nessus
nessus
Fedora 16 : systemd-37-15.fc16 (2012-2557)
2012-03-12 00:00:00
openSUSE Security Update : systemd (openSUSE-2012-139)
2014-06-13 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: systemd-37-15.fc16
2012-03-11 23:20:39

CVSS2

6.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2012-0871
nvd1openvas2prion1cvelist1debiancve1suse1nessus2fedora1