CVE-2011-2472

Exploit

EPSS 0.02%
Veröffentlicht 09.06.2011 21:55:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Directory traversal vulnerability in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to overwrite arbitrary files via a .. (dot dot) in the --save argument, related to the --session-dir argument, a different vulnerability than CVE-2011-1760.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Maynard Johnson ≫ Oprofile Version <= 0.9.6

Maynard Johnson ≫ Oprofile Version0.1

Maynard Johnson ≫ Oprofile Version0.2

Maynard Johnson ≫ Oprofile Version0.3

Maynard Johnson ≫ Oprofile Version0.4

Maynard Johnson ≫ Oprofile Version0.5

Maynard Johnson ≫ Oprofile Version0.5.1

Maynard Johnson ≫ Oprofile Version0.5.2

Maynard Johnson ≫ Oprofile Version0.5.3

Maynard Johnson ≫ Oprofile Version0.5.4

Maynard Johnson ≫ Oprofile Version0.6

Maynard Johnson ≫ Oprofile Version0.6.1

Maynard Johnson ≫ Oprofile Version0.7

Maynard Johnson ≫ Oprofile Version0.7.1

Maynard Johnson ≫ Oprofile Version0.8

Maynard Johnson ≫ Oprofile Version0.8.1

Maynard Johnson ≫ Oprofile Version0.8.2

Maynard Johnson ≫ Oprofile Version0.9

Maynard Johnson ≫ Oprofile Version0.9.1

Maynard Johnson ≫ Oprofile Version0.9.2

Maynard Johnson ≫ Oprofile Version0.9.3

Maynard Johnson ≫ Oprofile Version0.9.4

Maynard Johnson ≫ Oprofile Version0.9.5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.025

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.3	3.4	9.2	AV:L/AC:M/Au:N/C:N/I:C/A:C

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624212

Exploit

http://openwall.com/lists/oss-security/2011/05/10/6

http://openwall.com/lists/oss-security/2011/05/10/7

Patch

http://openwall.com/lists/oss-security/2011/05/11/1

http://secunia.com/advisories/45205

http://www.debian.org/security/2011/dsa-2254

http://www.ubuntu.com/usn/USN-1166-1

https://bugzilla.redhat.com/show_bug.cgi?id=700883

Patch

Exploit