Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-1089
HistoryApr 09, 2011 - 12:00 a.m.

CVE-2011-1089

2011-04-0900:00:00
ubuntu.com
ubuntu.com
8

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

10.1%

JSON

The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and
earlier does not report an error status for failed attempts to write to the
/etc/mtab file, which makes it easier for local users to trigger corruption
of this file, as demonstrated by writes from a process with a small
RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarcheglibc< 2.11.1-0ubuntu7.10UNKNOWN
ubuntu10.10noarcheglibc< 2.12.1-0ubuntu10.4UNKNOWN
ubuntu11.04noarcheglibc< 2.13-0ubuntu13.1UNKNOWN
ubuntu8.04noarchglibc< 2.7-10ubuntu8.1UNKNOWN

Related

nvd 7
cve 7
prion 7
debiancve 6
cvelist 7
nessus 58
ubuntucve 6
veracode 2
openvas 55
oraclelinux 4
securityvulns 6
redhat 5
centos 3
ubuntu 2
osv 1
debian 2
gentoo 2
vmware 8
packetstorm 1
suse 1
nvd
nvd
CVE-2011-1089
2011-04-10 02:55:01
CVE-2010-0296
2010-06-01 20:30:02
CVE-2011-1749
2014-02-26 15:55:06
cve
cve
CVE-2011-1089
2011-04-10 02:55:01
CVE-2010-0296
2010-06-01 20:30:02
CVE-2011-1679
2011-04-10 02:55:02
prion
prion
Memory corruption
2011-04-10 02:55:00
Memory corruption
2010-06-01 20:30:00
Sql injection
2011-04-10 02:55:00
debiancve
debiancve
CVE-2011-1089
2011-04-10 02:55:01
CVE-2010-0296
2010-06-01 20:30:02
CVE-2011-1678
2011-04-10 02:55:02
cvelist
cvelist
CVE-2011-1089
2011-04-10 01:29:00
CVE-2010-0296
2010-06-01 20:00:00
CVE-2011-1675
2011-04-10 01:29:00
nessus
nessus
Oracle Linux 6 : glibc (ELSA-2011-1526)
2023-09-07 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2011:179)
2012-09-06 00:00:00
RHEL 6 : glibc (RHSA-2011:1526)
2011-12-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-0296
2010-04-07 00:00:00
CVE-2011-1681
2011-04-10 00:00:00
CVE-2011-1675
2011-04-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:08:59
Privilege Escalation
2020-04-10 00:55:25
openvas
openvas
RedHat Update for glibc RHSA-2011:1526-03
2012-07-09 00:00:00
RedHat Update for glibc RHSA-2011:1526-03
2012-07-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1488-1)
2021-06-09 00:00:00
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2011-12-14 00:00:00
glibc security and bug fix update
2012-02-13 00:00:00
glibc security update
2012-02-13 00:00:00
securityvulns
securityvulns
GNU glibc library security vulnerabilities
2010-05-27 00:00:00
[USN-944-1] GNU C Library vulnerabilities
2010-05-27 00:00:00
[ MDVSA-2011:178 ] glibc
2011-12-04 00:00:00
redhat
redhat
(RHSA-2011:1526) Low: glibc security, bug fix, and enhancement update
2011-12-06 00:00:00
(RHSA-2012:0125) Moderate: glibc security and bug fix update
2012-02-13 00:00:00
(RHSA-2012:0126) Moderate: glibc security update
2012-02-13 00:00:00
centos
centos
glibc, nptl, nscd security update
2012-02-14 02:09:08
glibc, nscd security update
2012-02-14 03:06:54
glibc, nscd security update
2011-04-14 13:51:19
ubuntu
ubuntu
GNU C Library vulnerabilities
2010-05-25 00:00:00
GNU C Library vulnerabilities
2012-03-09 00:00:00
osv
osv
glibc - several vulnerabilities
2010-06-10 00:00:00
debian
debian
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
gentoo
gentoo
GNU C library: Multiple vulnerabilities
2010-11-15 00:00:00
GNU C Library: Multiple vulnerabilities
2013-12-03 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-07-28 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-07-28 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
packetstorm
packetstorm
WAGO 852 Industrial Managed Switch Series Code Execution / Hardcoded Credentials
2019-06-13 00:00:00
suse
suse
local privilege escalation in glibc
2010-10-28 13:41:00

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for UB:CVE-2011-1089
nvd7cve7prion7debiancve6cvelist7nessus58ubuntucve6veracode2openvas55oraclelinux4securityvulns6redhat5centos3ubuntu2osv1debian2gentoo2vmware8packetstorm1suse1