Lucene search
HistoryMar 12, 2015 - 2:59 p.m.
CVE-2015-2285
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
16.2%
The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user/*/upstart/sessions/.
Affected configurations
Node
ubuntuupstartRange≤1.13.2-0ubuntu7
ubuntuvividMatch15.04
Related
zdt
zdt
Ubuntu 15.04 (Dev) - Upstart Logrotation Privilege Escalation Vulnerability
2017-03-29 00:00:00
ubuntucve
ubuntucve
CVE-2015-2285
2015-03-12 00:00:00
prion
prion
Command injection
2015-03-12 14:59:00
cvelist
cvelist
CVE-2015-2285
2022-10-03 16:16:11
cve
cve
CVE-2015-2285
2022-10-03 16:16:11
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
16.2%
Related for NVD:CVE-2015-2285