Lucene search

[email protected]CVE-2011-4060

HistoryOct 18, 2011 - 1:55 a.m.

CVE-2011-4060

2011-10-1801:55:01

CWE-59

[email protected]

web.nvd.nist.gov

qnx neutrino

rtos

symlink attack

cve-2011-4060

ld_debug_output

ld_debug

environment variables

security vulnerability

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.

Affected configurations

NVD

Node

qnxneutrino_rtosMatch6.5.0

CPENameOperatorVersion
qnx:neutrino_rtosqnx neutrino rtoseq6.5.0

CPE	Name	Operator	Version
qnx:neutrino_rtos	qnx neutrino rtos	eq	6.5.0

References

securityreason.com/securityalert/8475

www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc

www.osvdb.org/71784

www.qnx.com/developers/articles/rel_5189_46.html

www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html

www.securityfocus.com/archive/1/516958

www.securityfocus.com/archive/1/518659

www.securityfocus.com/bid/46838

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2011-4060

cvelist1 prion1 nvd1