CVE-2012-0427

Severity

72%

Complexity

39%

Confidentiality

165%

OpenSuse 11.4 is vulnerable per https://bugzilla.novell.com/show_bug.cgi?id=604730

yast2-add-on-creator in SUSE inst-source-utils 2008.11.26 before 2008.11.26-0.9.1 and 2012.9.13 before 2012.9.13-0.8.1 allows local users to gain privileges via a crafted (1) file name or (2) directory name.

OpenSuse 11.4 is vulnerable per https://bugzilla.novell.com/show_bug.cgi?id=604730

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 11 years ago

2013-12-02 04:36:00

Last updated 6 years ago

2018-10-30 16:27:00

Affected Software

OpenSUSE 11.4

11.4

References

http://download.novell.com/Download?buildid=tGCXHQR48E4~

https://bugzilla.novell.com/show_bug.cgi?id=604730

Exploit

https://support.novell.com/security/cve/CVE-2012-0427.html

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.