Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-4455HistoryOct 10, 2012 - 6:55 p.m.
CVE-2012-4455
2012-10-1018:55:04
Debian Security Bug Tracker
security-tracker.debian.org
8
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.1%
openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK…opencryptoki or (2) LCK…opencryptoki_stdll file in /var/lock/.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | opencryptoki | < 3.4.1+dfsg-1 | opencryptoki_3.4.1+dfsg-1_all.deb |
| Debian | 11 | all | opencryptoki | < 3.4.1+dfsg-1 | opencryptoki_3.4.1+dfsg-1_all.deb |
| Debian | 999 | all | opencryptoki | < 3.4.1+dfsg-1 | opencryptoki_3.4.1+dfsg-1_all.deb |
| Debian | 13 | all | opencryptoki | < 3.4.1+dfsg-1 | opencryptoki_3.4.1+dfsg-1_all.deb |
Related
cve
cve
CVE-2012-4455
2012-10-10 18:55:04
prion
prion
Code injection
2012-10-10 18:55:00
nvd
nvd
CVE-2012-4455
2012-10-10 18:55:04
ubuntucve
ubuntucve
CVE-2012-4455
2012-10-10 00:00:00
cvelist
cvelist
CVE-2012-4455
2012-10-10 18:00:00
nessus
nessus
RHEL 4 : opencryptoki (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : opencryptoki (Unpatched Vulnerability)
2024-06-03 00:00:00
SuSE 11.2 Security Update : openCryptoki (SAT Patch Number 7053)
2013-01-25 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:1705-1)
2021-06-09 00:00:00
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.1%
Related for DEBIANCVE:CVE-2012-4455