Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-2471

Опубликовано: 09 июн. 2011
Источник: nvd
CVSS2: 7.2
EPSS Низкий

Описание

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:maynard_johnson:oprofile:*:*:*:*:*:*:*:*
Версия до 0.9.6 (включая)
cpe:2.3:a:maynard_johnson:oprofile:0.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.2:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.3:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.4:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.5:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.6:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.7:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.8:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:maynard_johnson:oprofile:0.9.5:*:*:*:*:*:*:*

EPSS

Процентиль: 20%
0.00062
Низкий

7.2 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2011-2471

ubuntu
больше 14 лет назад

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

redhat логотип

CVE-2011-2471

redhat
больше 14 лет назад

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

debian логотип

CVE-2011-2471

debian
больше 14 лет назад

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users ...

github логотип

GHSA-jvp9-2x6w-jpq3

github
больше 3 лет назад

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

EPSS

Процентиль: 20%
0.00062
Низкий

7.2 High

CVSS2

Дефекты

CWE-264