Lucene search
MitreCVELIST:CVE-2011-2473HistoryJun 09, 2011 - 9:00 p.m.
CVE-2011-2473
2011-06-0921:00:00
mitre
www.cve.org
7
The do_dump_data function in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to create or overwrite arbitrary files via a crafted --session-dir argument in conjunction with a symlink attack on the opd_pipe file, a different vulnerability than CVE-2011-1760.
References
bugs.debian.org/cgi-bin/bugreport.cgi?bug=624212
openwall.com/lists/oss-security/2011/05/03/1
openwall.com/lists/oss-security/2011/05/10/6
openwall.com/lists/oss-security/2011/05/10/7
openwall.com/lists/oss-security/2011/05/11/1
www.debian.org/security/2011/dsa-2254
exchange.xforce.ibmcloud.com/vulnerabilities/67978
Related
ubuntucve
ubuntucve
cve
cve
prion
prion
Design/Logic Flaw
2011-06-09 21:55:00
Design/Logic Flaw
2011-06-09 19:55:00
Directory traversal
2011-06-09 21:55:00
nvd
nvd
openvas
openvas
OProfile Multiple Vulnerabilities
2011-06-20 00:00:00
OProfile <= 0.9.6 Multiple Vulnerabilities
2011-06-20 00:00:00
Debian: Security Advisory (DSA-2254-1)
2011-08-03 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: oprofile-0.9.6-21.fc14
2011-07-26 03:38:12
[SECURITY] Fedora 15 Update: oprofile-0.9.6-21.fc15
2011-07-26 03:48:36
securityvulns
securityvulns
[SECURITY] [DSA 2254-1] oprofile security update
2011-06-11 00:00:00
OProfile privilege escalation
2011-06-11 00:00:00
nessus
nessus
Fedora 15 : oprofile-0.9.6-21.fc15 (2011-8076)
2011-07-26 00:00:00
Debian DSA-2254-1 : oprofile - command injection
2011-06-10 00:00:00
EulerOS 2.0 SP3 : oprofile (EulerOS-SA-2019-2644)
2019-12-18 00:00:00
exploitdb
exploitdb
debian
debian
[SECURITY] [DSA 2254-2] oprofile security update
2011-07-16 01:26:18
[SECURITY] [DSA 2254-1] oprofile security update
2011-06-04 18:09:02
cvelist
cvelist
ubuntu
ubuntu
OProfile vulnerabilities
2011-07-11 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00