Vulnerability CVE-2012-1106


Published: 2012-07-03

Description:
The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.suid_dumpable option is set to 2, which allows local users to obtain sensitive information.

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

Vendor: Redhat
Product: Automatic bug reporting tool 
Version: 2.0.7;

CVSS2 => (AV:L/AC:M/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
1.9/10
2.9/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None

 References:
https://fedorahosted.org/abrt/changeset/23d6997d7886abe118c28254f7f73f0b19b2d4e0
http://xforce.iss.net/xforce/xfdb/76524
http://www.securityfocus.com/bid/54121
http://rhn.redhat.com/errata/RHSA-2012-0841.html

Related CVE
CVE-2014-0026
katello-headpin is vulnerable to CSRF in REST API
CVE-2013-6495
JBossWeb Bayeux has reflected XSS
CVE-2014-3656
JBoss KeyCloak: XSS in login-status-iframe.html
CVE-2019-14910
A vulnerability was found in keycloak 7.x, when keycloak is configured with LDAP user federation and StartTLS is used instead of SSL/TLS from the LDAP server (ldaps), in this case user authentication succeeds even if invalid password has entered.
CVE-2019-13456
In FreeRADIUS 3.0 through 3.0.19, on average 1 in every 2048 EAP-pwd handshakes fails because the password element cannot be found within 10 iterations of the hunting and pecking loop. This leaks information that an attacker can use to recover the pa...
CVE-2013-4235
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees
CVE-2013-2103
OpenShift cartridge allows remote URL retrieval
CVE-2012-5562
rhn-proxy: may transmit credentials over clear-text when accessing RHN Satellite

Copyright 2019, cxsecurity.com

 

Back to Top