Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-2653
HistoryJul 12, 2012 - 12:00 a.m.

CVE-2012-2653

2012-07-1200:00:00
ubuntu.com
ubuntu.com
25

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.6%

JSON

arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others,
does not properly drop supplementary groups, which might allow attackers to
gain root privileges by leveraging other vulnerabilities in the daemon.

Bugs

Notes

Author Note
tyhicks Per Debian BTS, “Found in version arpwatch/2.1a15-1.1”
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarcharpwatch< 2.1a15-1.1+squeeze1build0.10.04.1UNKNOWN
ubuntu11.04noarcharpwatch< 2.1a15-1.1+squeeze1build0.11.04.1UNKNOWN
ubuntu11.10noarcharpwatch< 2.1a15-1.1+squeeze1build0.11.10.1UNKNOWN
ubuntu12.04noarcharpwatch< 2.1a15-1.1+squeeze1build0.12.04.1UNKNOWN

Related

openvas 12
securityvulns 2
nessus 9
fedora 3
debian 3
gentoo 1
debiancve 1
cbl_mariner 1
prion 1
cve 1
ibm 1
openvas
openvas
Mandriva Update for arpwatch MDVSA-2012:113 (arpwatch)
2012-07-30 00:00:00
Mandriva Update for arpwatch MDVSA-2012:113 (arpwatch)
2012-07-30 00:00:00
Debian Security Advisory DSA 2482-1 (libgdata)
2012-08-10 00:00:00
securityvulns
securityvulns
arpwatch protection bypass
2012-06-17 00:00:00
[SECURITY] [DSA 2481-1] arpwatch security update
2012-06-17 00:00:00
nessus
nessus
GLSA-201607-16 : arpwatch: Privilege escalation
2016-07-21 00:00:00
Mandriva Linux Security Advisory : arpwatch (MDVSA-2013:030)
2013-04-20 00:00:00
Fedora 15 : arpwatch-2.1a15-16.fc15 (2012-8702)
2012-06-20 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: arpwatch-2.1a15-18.fc16
2012-06-20 00:35:29
[SECURITY] Fedora 17 Update: arpwatch-2.1a15-20.fc17
2012-06-20 00:31:35
[SECURITY] Fedora 15 Update: arpwatch-2.1a15-16.fc15
2012-06-20 00:34:25
debian
debian
[SECURITY] [DSA 2481-1] arpwatch security update
2012-06-02 12:50:29
[SECURITY] [DSA 2482-1] arpwatch security update
2012-06-02 12:52:49
[SECURITY] [DSA 2482-1] libgdata security update
2012-06-02 13:06:05
gentoo
gentoo
arpwatch: Privilege escalation
2016-07-20 00:00:00
debiancve
debiancve
CVE-2012-2653
2012-07-12 20:55:00
cbl_mariner
cbl_mariner
CVE-2012-2653 affecting package arpwatch 2.1a15-51
2024-05-05 09:06:37
prion
prion
Design/Logic Flaw
2012-07-12 20:55:00
cve
cve
CVE-2012-2653
2012-07-12 20:55:00
ibm
ibm
Security Bulletin: WebSphere Cast Iron and App Connect Professional are affected by vulnerabilities in busybox, arpwatch, apr, acpid, augeas, firefox, ctdb.
2021-12-15 07:41:22

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.6%

JSON
Related for UB:CVE-2012-2653
openvas12securityvulns2nessus9fedora3debian3gentoo1debiancve1cbl_mariner1prion1cve1ibm1