Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-1089
HistoryApr 09, 2011 - 12:00 a.m.

CVE-2011-1089

2011-04-0900:00:00
ubuntu.com
ubuntu.com
8

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

9.3%

JSON

The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and
earlier does not report an error status for failed attempts to write to the
/etc/mtab file, which makes it easier for local users to trigger corruption
of this file, as demonstrated by writes from a process with a small
RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarcheglibc< 2.11.1-0ubuntu7.10UNKNOWN
ubuntu10.10noarcheglibc< 2.12.1-0ubuntu10.4UNKNOWN
ubuntu11.04noarcheglibc< 2.13-0ubuntu13.1UNKNOWN
ubuntu8.04noarchglibc< 2.7-10ubuntu8.1UNKNOWN

Related

prion 7
debiancve 6
cve 7
nessus 57
ubuntucve 6
veracode 2
oraclelinux 4
openvas 55
securityvulns 6
redhat 5
ubuntu 2
centos 3
debian 2
osv 1
gentoo 2
vmware 8
suse 1
packetstorm 1
prion
prion
Memory corruption
2011-04-10 02:55:00
Memory corruption
2010-06-01 20:30:00
Sql injection
2011-04-10 02:55:00
debiancve
debiancve
CVE-2011-1089
2011-04-10 02:55:00
CVE-2010-0296
2010-06-01 20:30:00
CVE-2011-1675
2011-04-10 02:55:00
cve
cve
CVE-2011-1089
2011-04-10 02:55:00
CVE-2010-0296
2010-06-01 20:30:00
CVE-2011-1679
2011-04-10 02:55:00
nessus
nessus
Oracle Linux 6 : glibc (ELSA-2011-1526)
2023-09-07 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2011:179)
2012-09-06 00:00:00
RHEL 6 : glibc (RHSA-2011:1526)
2011-12-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-0296
2010-04-07 00:00:00
CVE-2011-1681
2011-04-10 00:00:00
CVE-2011-1675
2011-04-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:08:59
Privilege Escalation
2020-04-10 00:55:25
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2011-12-14 00:00:00
glibc security and bug fix update
2012-02-13 00:00:00
glibc security update
2012-02-13 00:00:00
openvas
openvas
RedHat Update for glibc RHSA-2011:1526-03
2012-07-09 00:00:00
RedHat Update for glibc RHSA-2011:1526-03
2012-07-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1488-1)
2021-06-09 00:00:00
securityvulns
securityvulns
GNU glibc library security vulnerabilities
2010-05-27 00:00:00
[USN-944-1] GNU C Library vulnerabilities
2010-05-27 00:00:00
[ MDVSA-2011:178 ] glibc
2011-12-04 00:00:00
redhat
redhat
(RHSA-2011:1526) Low: glibc security, bug fix, and enhancement update
2011-12-06 00:00:00
(RHSA-2012:0125) Moderate: glibc security and bug fix update
2012-02-13 00:00:00
(RHSA-2012:0126) Moderate: glibc security update
2012-02-13 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2010-05-25 00:00:00
GNU C Library vulnerabilities
2012-03-09 00:00:00
centos
centos
glibc, nptl, nscd security update
2012-02-14 02:09:08
glibc, nscd security update
2012-02-14 03:06:54
glibc, nscd security update
2011-04-14 13:51:19
debian
debian
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
osv
osv
glibc - several vulnerabilities
2010-06-10 00:00:00
gentoo
gentoo
GNU C library: Multiple vulnerabilities
2010-11-15 00:00:00
GNU C Library: Multiple vulnerabilities
2013-12-03 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-07-28 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-07-28 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
suse
suse
local privilege escalation in glibc
2010-10-28 13:41:00
packetstorm
packetstorm
WAGO 852 Industrial Managed Switch Series Code Execution / Hardcoded Credentials
2019-06-13 00:00:00

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

9.3%

JSON
Related for UB:CVE-2011-1089
prion7debiancve6cve7nessus57ubuntucve6veracode2oraclelinux4openvas55securityvulns6redhat5ubuntu2centos3debian2osv1gentoo2vmware8suse1packetstorm1