[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

110507

 
 

909

 
 

86504

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2011-2504Date: (C)2013-03-15   (M)2018-05-10


Untrusted search path vulnerability in x11perfcomp in XFree86 x11perf before 1.5.4 allows local users to gain privileges via unspecified Trojan horse code in the current working directory.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : CVSS Score : 6.9
Exploit Score: Exploit Score: 3.4
Impact Score: Impact Score: 10.0
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: Access Vector: LOCAL
Attack Complexity: Access Complexity: MEDIUM
Privileges Required: Authentication: NONE
User Interaction: Confidentiality: COMPLETE
Scope: Integrity: COMPLETE
Confidentiality: Availability: COMPLETE
Integrity:  
Availability:  
  
Reference:
BID-58082
RHSA-2013:0502
http://lists.freedesktop.org/archives/xorg-announce/2011-July/001715.html
https://bugzilla.redhat.com/show_bug.cgi?id=717672
x11perf-priv-esc(82241)

CPE    4
cpe:/a:xfree86:x11perf:1.5.1
cpe:/a:xfree86:x11perf:1.5
cpe:/a:xfree86:x11perf:1.5.2
cpe:/a:xfree86:x11perf:1.5.3
...
OVAL    6
oval:org.secpod.oval:def:500976
oval:org.secpod.oval:def:104469
oval:org.secpod.oval:def:1500015
oval:org.secpod.oval:def:202580
...

© SecPod Technologies