Lucene search
RubySecRUBY:SQLITE3-RUBY-2011-0995-72180HistoryMay 12, 2011 - 8:00 p.m.
rubygem-sqlite3 gem uses weak file permissions
2011-05-1220:00:00
RubySec
www.suse.com
3
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
The sqlite3-ruby gem in the rubygem-sqlite3 package before
1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak
permissions for unspecified files, which allows local users
to gain privileges via unknown vectors.
Affected configurations
Node
rubysqlite3-rubyRange≤1.2.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ruby | sqlite3-ruby | * | cpe:2.3:a:ruby:sqlite3-ruby:*:*:*:*:*:*:*:* |
Related
debiancve
debiancve
CVE-2011-0995
2011-05-13 17:05:41
prion
prion
Code injection
2011-05-13 17:05:00
github
github
osv
osv
ubuntucve
ubuntucve
CVE-2011-0995
2011-05-13 00:00:00
cvelist
cvelist
CVE-2011-0995
2011-05-13 17:00:00
nvd
nvd
CVE-2011-0995
2011-05-13 17:05:41
cve
cve
CVE-2011-0995
2011-05-13 17:05:41
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
Related for RUBY:SQLITE3-RUBY-2011-0995-72180