Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-0460

Overview

Vulnerability Score 6.3 6.3
CVE Id CVE-2011-0460
Last Modified 16 Apr 2014 02:55:49
Published 16 Apr 2014 02:37:09
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-0460

Summary

The init script in kbd, possibly 1.14.1 and earlier, allows local users to overwrite arbitrary files via a symlink attack on /dev/shm/defkeymap.map.

Vulnerable Systems

Operating System

  • Novell Opensuse 11.2

  • Novell Opensuse 11.3

Application

  • Kbd-project Kbd 0.99

  • Kbd-project Kbd 1.01

  • Kbd-project Kbd 1.03

  • Kbd-project Kbd 1.04

  • Kbd-project Kbd 1.05

  • Kbd-project Kbd 1.06

  • Kbd-project Kbd 1.08

  • Kbd-project Kbd 1.10

  • Kbd-project Kbd 1.11

  • Kbd-project Kbd 1.12

  • Kbd-project Kbd 1.13

  • Kbd-project Kbd 1.14

  • Kbd-project Kbd 1.14.1


References

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=663898

SUSE - openSUSE-SU-2011:0357


Last Updated: 27 May 2016 11:05:00