cpe:/a:nrl:opie:2.2 cpe:/a:nrl:opie:2.3 cpe:/a:nrl:opie:2.4 cpe:/a:nrl:opie:2.4.1:test1 cpe:/a:nrl:opie:2.10 cpe:/a:nrl:opie:2.11 cpe:/a:nrl:opie:2.21 cpe:/a:nrl:opie:2.22 cpe:/a:nrl:opie:2.32 CVE-2011-2489 2011-07-26T22:55:02.040-04:00 2011-09-06T23:17:30.037-04:00 7.2 LOCAL LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2011-07-27T11:13:00.000-04:00 SECUNIA 45136 SECUNIA 45448 BID 48390 DEBIAN DSA-2281 SUSE SUSE-SU-2011:0849 MLIST [oss-security] 20110622 CVE requests: opie off by one and setuid() failure MLIST [oss-security] 20110623 Re: CVE requests: opie off by one and setuid() failure CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631344 CONFIRM https://bugzilla.novell.com/show_bug.cgi?id=698772 CONFIRM https://bugzillafiles.novell.org/attachment.cgi?id=435902 SUSE openSUSE-SU-2011:0848 Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line.