Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-4028
HistoryJul 03, 2012 - 7:55 p.m.

CVE-2011-4028

2012-07-0319:55:01
CWE-59
[email protected]
web.nvd.nist.gov

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:H/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.

Affected configurations

NVD
Node
x.orgx_serverRange1.11.1
OR
x.orgx_serverMatch1.11.0

Related

cve 1
veracode 2
redhat 2
nessus 22
ubuntucve 1
openvas 25
debiancve 1
prion 1
cvelist 1
suse 2
gentoo 1
centos 1
amazon 1
oraclelinux 2
freebsd 1
ubuntu 3
securityvulns 2
fedora 3
cve
cve
CVE-2011-4028
2022-10-03 16:15:14
veracode
veracode
Symlink Attack
2019-01-15 08:52:49
Denial Of Service (DoS)
2019-05-02 04:42:01
redhat
redhat
(RHSA-2012:0303) Low: xorg-x11-server security and bug fix update
2012-02-21 00:00:00
(RHSA-2012:0939) Low: xorg-x11-server security and bug fix update
2012-06-20 00:00:00
nessus
nessus
Scientific Linux Security Update : xorg-x11-server on SL5.x i386/x86_64 (20120221)
2012-08-01 00:00:00
Oracle Linux 5 : xorg-x11-server (ELSA-2012-0303)
2013-07-12 00:00:00
RHEL 5 : xorg-x11-server (RHSA-2012:0303)
2012-02-21 00:00:00
ubuntucve
ubuntucve
CVE-2011-4028
2011-10-18 00:00:00
openvas
openvas
RedHat Update for xorg-x11-server RHSA-2012:0303-03
2012-02-21 00:00:00
RedHat Update for xorg-x11-server RHSA-2012:0303-03
2012-02-21 00:00:00
SuSE Update for xorg-x11-server openSUSE-SU-2012:0227-1 (xorg-x11-server)
2012-08-02 00:00:00
debiancve
debiancve
CVE-2011-4028
2022-10-03 16:15:14
prion
prion
Code injection
2012-07-03 19:55:00
cvelist
cvelist
CVE-2011-4028
2022-10-03 16:15:14
suse
suse
Security update for xorg-x11-server (important)
2011-12-02 08:08:16
xorg-x11-server (important)
2012-02-09 19:10:34
gentoo
gentoo
X.Org X Server: Multiple vulnerabilities
2011-10-22 00:00:00
centos
centos
xorg security update
2012-07-10 17:26:54
amazon
amazon
Low: xorg-x11-server
2012-07-05 16:24:00
oraclelinux
oraclelinux
xorg-x11-server security and bug fix update
2012-06-27 00:00:00
xorg-x11-server security and bug fix update
2012-03-01 00:00:00
freebsd
freebsd
Xorg server -- two vulnerabilities in X server lock handling code
2011-10-18 00:00:00
ubuntu
ubuntu
X.Org X server vulnerability
2011-10-20 00:00:00
X.Org X server vulnerabilities
2011-10-18 00:00:00
X.Org X server regression
2011-10-19 00:00:00
securityvulns
securityvulns
[USN-1232-1] X.Org X server vulnerabilities
2011-10-20 00:00:00
X.Org multiple security vulnerabilities
2011-10-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: nx-libs-3.5.0.29-1.fc20
2015-03-26 21:29:40
[SECURITY] Fedora 22 Update: nx-libs-3.5.0.29-1.fc22
2015-03-21 04:53:26
[SECURITY] Fedora 21 Update: nx-libs-3.5.0.29-1.fc21
2015-03-26 21:51:39

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:H/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for NVD:CVE-2011-4028
cve1veracode2redhat2nessus22ubuntucve1openvas25debiancve1prion1cvelist1suse2gentoo1centos1amazon1oraclelinux2freebsd1ubuntu3securityvulns2fedora3