CVE-2011-2471

Severity

72%

Complexity

39%

Confidentiality

165%

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemonrc file and the do_save_setup and do_load_setup functions, a different vulnerability than CVE-2011-1760.

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Maynard Johnson OProfile

First reported 13 years ago

2011-06-09 21:55:00

Last updated 7 years ago

2017-08-29 01:29:00

Affected Software

Maynard Johnson OProfile 0.1

0.1

Maynard Johnson OProfile 0.2

0.2

Maynard Johnson OProfile 0.3

0.3

Maynard Johnson OProfile 0.4

0.4

Maynard Johnson OProfile 0.5

0.5

Maynard Johnson OProfile 0.5.1

0.5.1

Maynard Johnson OProfile 0.5.2

0.5.2

Maynard Johnson OProfile 0.5.3

0.5.3

Maynard Johnson OProfile 0.5.4

0.5.4

Maynard Johnson OProfile 0.6

0.6

Maynard Johnson OProfile 0.6.1

0.6.1

Maynard Johnson OProfile 0.7

0.7

Maynard Johnson OProfile 0.7.1

0.7.1

Maynard Johnson OProfile 0.8

0.8

Maynard Johnson OProfile 0.8.1

0.8.1

Maynard Johnson OProfile 0.8.2

0.8.2

Maynard Johnson OProfile 0.9

0.9

Maynard Johnson OProfile 0.9.1

0.9.1

Maynard Johnson OProfile 0.9.2

0.9.2

Maynard Johnson OProfile 0.9.3

0.9.3

Maynard Johnson OProfile 0.9.4

0.9.4

Maynard Johnson OProfile 0.9.5

0.9.5

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624212

Exploit

[oss-security] 20110503 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo

[oss-security] 20110510 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo

[oss-security] 20110510 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo

Patch

[oss-security] 20110511 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo

45205

DSA-2254

USN-1166-1

https://bugzilla.redhat.com/show_bug.cgi?id=700883

Exploit, Patch

oprofile-opcontrol-priv-escalation(67980)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.