Lucene search

PRIOn knowledge basePRION:CVE-2012-2291

HistoryJan 21, 2013 - 9:55 p.m.

Design/Logic Flaw

2013-01-2121:55:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.

CPENameOperatorVersion
avamareq4.0
avamareq4.1
avamareq5.0 sp2
avamareq5.0
avamareq5.0 sp1
avamareq5.0.0-407
avamareq5.0.4-26
avamareq6.0
avamar_plugineq6.1
avamar_plugineq6.0

Name	Operator	Version
avamar	eq	4.0
avamar	eq	4.1
avamar	eq	5.0 sp2
avamar	eq	5.0
avamar	eq	5.0 sp1
avamar	eq	5.0.0-407
avamar	eq	5.0.4-26
avamar	eq	6.0
avamar_plugin	eq	6.1
avamar_plugin	eq	6.0

Rows per page:

1-10 of 121

References

archives.neohapsis.com/archives/bugtraq/2013-01/0086.html

7.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2012-2291