Lucene search
Ubuntu.comUB:CVE-2011-2490HistoryJul 27, 2011 - 12:00 a.m.
CVE-2011-2490
2011-07-2700:00:00
ubuntu.com
ubuntu.com
5
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.1%
opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the
return value of the setuid system call, which allows local users to gain
privileges by arranging for an account to already be running its maximum
number of processes.
Notes
| Author | Note |
|---|---|
| jdstrand | per mdeslaur, code not compiled |
Related
prion
prion
Design/Logic Flaw
2011-07-27 02:55:00
cvelist
cvelist
CVE-2011-2490
2011-07-27 01:29:00
cve
cve
CVE-2011-2490
2011-07-27 02:55:00
nessus
nessus
SuSE 11.1 Security Update : opie (SAT Patch Number 4815)
2011-07-28 00:00:00
openSUSE Security Update : opie (openSUSE-SU-2011:0848-1)
2014-06-13 00:00:00
SuSE 10 Security Update : opie (ZYPP Patch Number 7594)
2011-12-13 00:00:00
securityvulns
securityvulns
opie security vulnerabilities
2011-07-26 00:00:00
[SECURITY] [DSA 2281-1] opie security update
2011-07-26 00:00:00
osv
osv
opie - several
2011-07-21 00:00:00
debian
debian
[SECURITY] [DSA 2281-1] opie security update
2011-07-21 11:09:17
openvas
openvas
Debian Security Advisory DSA 2281-1 (opie)
2011-08-03 00:00:00
Debian: Security Advisory (DSA-2281-1)
2011-08-03 00:00:00
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.1%
Related for UB:CVE-2011-2490