Lucene search

[email protected]CVE-2011-0458

HistoryMar 28, 2011 - 4:55 p.m.

CVE-2011-0458

2011-03-2816:55:04

[email protected]

web.nvd.nist.gov

cve

2011

0458

untrusted search path

vulnerability

google picasa

privileges

trojan horse

executable file

6.3 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Untrusted search path vulnerability in the Locate on Disk feature in Google Picasa before 3.8 allows local users to gain privileges via a Trojan horse executable file in the current working directory.

Affected configurations

NVD

Node

googlepicasaRange≤3.6

CPENameOperatorVersion
google:picasagoogle picasale3.6

CPE	Name	Operator	Version
google:picasa	google picasa	le	3.6

References

jvn.jp/en/jp/JVN99977321/index.html

jvndb.jvn.jp/jvndb/JVNDB-2011-000022

osvdb.org/71281

secunia.com/advisories/43853

www.securityfocus.com/bid/47031

www.vupen.com/english/advisories/2011/0766

exchange.xforce.ibmcloud.com/vulnerabilities/66295

6.3 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2011-0458

seebug1 openvas2 prion1 cvelist1 jvn1 nessus1 nvd1