Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4363

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2011-4363
Last Modified 08 Oct 2012 12:00:00
Published 07 Oct 2012 05:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2011-4363

Summary

ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows local users to overwrite arbitrary files via a symlink attack on /tmp/TTYDEVS.

Vulnerable Systems

Application

  • Frii Proc%3a%3aprocesstable 0.45


References

CONFIRM - https://rt.cpan.org/Public/Bug/Display.html?id=72862

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4363

BID - 50868

OSVDB - 77428

MLIST - [oss-security] 20111130 Re: CVE request: Proc::ProcessTable perl module

MLIST - [oss-security] 20111130 CVE request: Proc::ProcessTable perl module

SECUNIA - 47015

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=650500


Last Updated: 27 May 2016 11:00:52