Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2011-1526
HistoryJul 11, 2011 - 8:55 p.m.

Design/Logic Flaw

2011-07-1120:55:00
PRIOn knowledge base
www.prio-n.com
8

6.5 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.4%

JSON

ftpd.c in the GSS-API FTP daemon in MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.1 and earlier does not check the krb5_setegid return value, which allows remote authenticated users to bypass intended group access restrictions, and create, overwrite, delete, or read files, via standard FTP commands, related to missing autoconf tests in a configure script.

References

Related

altlinux 3
nessus 18
openvas 24
fedora 3
oraclelinux 2
redhat 3
ubuntucve 1
debian 1
cve 1
securityvulns 2
veracode 1
suse 7
gentoo 1
altlinux
altlinux
Security fix for the ALT Linux 7 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 9 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 8 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
nessus
nessus
RHEL 5 : krb5 (RHSA-2012:0306)
2012-02-21 00:00:00
Scientific Linux Security Update : krb5 on SL5.x i386/x86_64 (20120221)
2012-08-01 00:00:00
Scientific Linux Security Update : krb5-appl on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Mandriva Update for krb5-appl MDVSA-2011:117 (krb5-appl)
2011-07-27 00:00:00
Mandriva Update for krb5-appl MDVSA-2011:117 (krb5-appl)
2011-07-27 00:00:00
Fedora Update for krb5-appl FEDORA-2011-9080
2011-07-18 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: krb5-appl-1.0.1-4.fc14
2011-07-15 01:26:36
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-7.fc15
2011-07-15 01:22:19
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-8.fc15
2012-01-05 20:57:26
oraclelinux
oraclelinux
krb5-appl security update
2011-07-05 00:00:00
krb5 security and bug fix update
2012-03-01 00:00:00
redhat
redhat
(RHSA-2012:0306) Low: krb5 security and bug fix update
2012-02-21 00:00:00
(RHSA-2011:0920) Important: krb5-appl security update
2011-07-05 00:00:00
(RHSA-2012:0168) Important: rhev-hypervisor5 security and bug fix update
2012-02-21 00:00:00
ubuntucve
ubuntucve
CVE-2011-1526
2011-07-11 00:00:00
debian
debian
[SECURITY] [DSA 2283-1] krb5-appl security update
2011-07-25 12:09:12
cve
cve
CVE-2011-1526
2011-07-11 20:55:00
securityvulns
securityvulns
MITKRB5-SA-2011-005 FTP daemon fails to set effective group ID [CVE-2011-1526]
2011-07-11 00:00:00
MIT krb5 FTP server privilege escalation
2011-10-24 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 01:05:25
suse
suse
krb5-appl: Fixed remote buffer overflow in ktelnetd (important)
2012-01-05 12:36:18
Security update for Kerberos 5 (important)
2012-01-05 12:36:16
krb5-appl: Fixed remote buffer overflow in ktelnetd (important)
2012-01-05 12:08:43
gentoo
gentoo
MIT Kerberos 5 Applications: Multiple vulnerabilities
2012-01-23 00:00:00

6.5 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.4%

JSON
Related for PRION:CVE-2011-1526
altlinux3nessus18openvas24fedora3oraclelinux2redhat3ubuntucve1debian1cve1securityvulns2veracode1suse7gentoo1