Lucene search

K

[email protected]CVE-2011-0465

HistoryApr 08, 2011 - 3:17 p.m.

CVE-2011-0465

2011-04-0815:17:00

CWE-20

[email protected]

web.nvd.nist.gov

48

4

cve-2011-0465

xrdb

x.org x11r7.6

remote execution

shell metacharacters

security vulnerability

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.022 Low

EPSS

Percentile

89.3%

xrdb.c in xrdb before 1.0.9 in X.Org X11R7.6 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.

CPENameOperatorVersion
x:x11x x11eqr7.0
x:x11x x11eqr3
x:x11x x11eqr6.1
x:x11x x11eqr6.8.0
matthias_hopf:xrdbmatthias hopf xrdbeq1.0.2
x:x11x x11eqr6.7
x:x11x x11eqr7.2
x:x11x x11eqr2
x:x11x x11ler7.6
x:x11x x11eqr7.1

Rows per page:

1-10 of 311

References

cgit.freedesktop.org/xorg/app/xrdb/commit/?id=1027d5df07398c1507fb1fe3a9981aa6b4bc3a56

lists.fedoraproject.org/pipermail/package-announce/2011-April/057928.html

lists.freedesktop.org/archives/xorg-announce/2011-April/001635.html

lists.freedesktop.org/archives/xorg-announce/2011-April/001636.html

lists.opensuse.org/opensuse-security-announce/2011-04/msg00002.html

secunia.com/advisories/44010

secunia.com/advisories/44012

secunia.com/advisories/44040

secunia.com/advisories/44082

secunia.com/advisories/44122

secunia.com/advisories/44123

secunia.com/advisories/44193

slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.465748

www.debian.org/security/2011/dsa-2213

www.mandriva.com/security/advisories?name=MDVSA-2011:076

www.redhat.com/support/errata/RHSA-2011-0432.html

www.redhat.com/support/errata/RHSA-2011-0433.html

www.securityfocus.com/bid/47189

www.securitytracker.com/id?1025317

www.ubuntu.com/usn/USN-1107-1

www.vupen.com/english/advisories/2011/0880

www.vupen.com/english/advisories/2011/0889

www.vupen.com/english/advisories/2011/0906

www.vupen.com/english/advisories/2011/0929

www.vupen.com/english/advisories/2011/0966

www.vupen.com/english/advisories/2011/0975

bugzilla.redhat.com/show_bug.cgi?id=680196

exchange.xforce.ibmcloud.com/vulnerabilities/66585

lwn.net/Articles/437150/

Social References

More

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.022 Low

EPSS

Percentile

89.3%

Related for CVE-2011-0465

fedora3 openvas26 nessus26 oraclelinux2 prion1 securityvulns2 slackware1 suse1 ubuntucve1 ubuntu1 redhat2 centos2 freebsd1 debian1 debiancve1 cve1 gentoo1