Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1144

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2011-1144
Last Modified 10 Mar 2011 10:51:21
Published 02 Mar 2011 08:00:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1144

Summary

The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4) pear-build-download directories. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1072.

Vulnerable Systems

Application

  • Php Pear 0.10

  • Php Pear 0.11

  • Php Pear 0.2.2

  • Php Pear 0.9

  • Php Pear 0.90

  • Php Pear 1.0

  • Php Pear 1.0.1

  • Php Pear 1.0b1

  • Php Pear 1.0b2

  • Php Pear 1.0b3

  • Php Pear 1.1

  • Php Pear 1.2

  • Php Pear 1.2.1

  • Php Pear 1.2b1

  • Php Pear 1.2b2

  • Php Pear 1.2b3

  • Php Pear 1.2b4

  • Php Pear 1.2b5

  • Php Pear 1.3

  • Php Pear 1.3.1

  • Php Pear 1.3.3

  • Php Pear 1.3.3.1

  • Php Pear 1.3.4

  • Php Pear 1.3.5

  • Php Pear 1.3.6

  • Php Pear 1.3b1

  • Php Pear 1.3b2

  • Php Pear 1.3b3

  • Php Pear 1.3b5

  • Php Pear 1.3b6

  • Php Pear 1.4.0

  • Php Pear 1.4.0a1

  • Php Pear 1.4.0a10

  • Php Pear 1.4.0a11

  • Php Pear 1.4.0a12

  • Php Pear 1.4.0a2

  • Php Pear 1.4.0a3

  • Php Pear 1.4.0a4

  • Php Pear 1.4.0a5

  • Php Pear 1.4.0a6

  • Php Pear 1.4.0a7

  • Php Pear 1.4.0a8

  • Php Pear 1.4.0a9

  • Php Pear 1.4.1

  • Php Pear 1.4.2

  • Php Pear 1.5.0

  • Php Pear 1.5.1

  • Php Pear 1.6.1

  • Php Pear 1.9.1

  • Php Pear 1.9.2


References

XF - pear-package-symlink(65911)

MISC - http://pear.php.net/bugs/bug.php?id=18056

MLIST - [oss-security] 20110301 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack

MLIST - [oss-security] 20110228 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack


Last Updated: 27 May 2016 10:56:11