Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-3386

Опубликовано: 07 авг. 2012
Источник: nvd
CVSS2: 4.4
EPSS Низкий

Описание

The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition that allows local users to execute arbitrary code via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnu:automake:*:*:*:*:*:*:*:*
Версия до 1.11.5 (включая)
cpe:2.3:a:gnu:automake:1.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p1:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p2:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p3:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p4:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p5:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.4:p6:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.6.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.7.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.8.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.9.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.10.0.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.10.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.10.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.10.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.11.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.11.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.11.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.11.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:automake:1.12.1:*:*:*:*:*:*:*

EPSS

Процентиль: 35%
0.00138
Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2012-3386

ubuntu
около 13 лет назад

The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition that allows local users to execute arbitrary code via unspecified vectors.

redhat логотип

CVE-2012-3386

redhat
около 13 лет назад

The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition that allows local users to execute arbitrary code via unspecified vectors.

debian логотип

CVE-2012-3386

debian
около 13 лет назад

The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x bef ...

suse-cvrf логотип

openSUSE-SU-2022:10031-1

suse-cvrf
около 3 лет назад

Security update for wdiff

github логотип

GHSA-mr65-r935-qjpj

github
больше 3 лет назад

The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition that allows local users to execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 35%
0.00138
Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264