Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SA:2012:001
HistoryFeb 29, 2012 - 5:13 p.m.

local privilege escalation in systemd

2012-02-2917:13:59
lists.opensuse.org
19

EPSS

0

Percentile

5.1%

JSON

systemd-logind, part of the systemd package, keeps track of user logins and sessions. Upon login it creates dedicated files inside the /run/user/ directory in an insecure manner. This allows local attackers to create symlinks inside arbitrary directories. Further exploitation steps allow local attackers to gain root access.

Solution

There is no easy workaround, please install the update packages.

Related

debiancve 1
fedora 1
nessus 2
prion 1
cvelist 1
openvas 2
nvd 1
cve 1
debiancve
debiancve
CVE-2012-0871
2014-04-18 14:55:25
fedora
fedora
[SECURITY] Fedora 16 Update: systemd-37-15.fc16
2012-03-11 23:20:39
nessus
nessus
Fedora 16 : systemd-37-15.fc16 (2012-2557)
2012-03-12 00:00:00
openSUSE Security Update : systemd (openSUSE-2012-139)
2014-06-13 00:00:00
prion
prion
Design/Logic Flaw
2014-04-18 14:55:00
cvelist
cvelist
CVE-2012-0871
2014-04-18 14:00:00
openvas
openvas
Fedora Update for systemd FEDORA-2012-2557
2012-04-02 00:00:00
Fedora Update for systemd FEDORA-2012-2557
2012-04-02 00:00:00
nvd
nvd
CVE-2012-0871
2014-04-18 14:55:25
cve
cve
CVE-2012-0871
2014-04-18 14:55:25

EPSS

0

Percentile

5.1%

JSON
Related for SUSE-SA:2012:001
debiancve1fedora1nessus2prion1cvelist1openvas2nvd1cve1