CVE-2006-0576
Published Feb 8, 2006
Last updated 6 years ago
Overview
- Description
- Untrusted search path vulnerability in opcontrol in OProfile 0.9.1 and earlier allows local users to execute arbitrary commands via a modified PATH that references malicious (1) which or (2) dirname programs. NOTE: while opcontrol normally is not run setuid, a common configuration suggests accessing opcontrol using sudo. In such a context, this is a vulnerability.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
- Impact
- -
- Solution
- -
Vendor comments
- Red HatRed Hat is aware of this issue and is tracking it via the following bug for Red Hat Enterprise Linux 3 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=207347 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/ This issue was fixed for Red Hat Enterprise Linux 4 in the following errata: http://rhn.redhat.com/errata/RHEA-2006-0355.html This issue does not affect Red Hat Enterprise Linux 2
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0A5F6D7-FED4-4D69-9800-FCE54AC5B8E6", "versionEndIncluding": "0.9.1" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F64BD56-0FCA-489B-8AB7-C0F9726A00D6" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9AF9D9DF-7709-4127-8CC6-AE692EC118C8" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58E4F6E3-E26C-465F-AF71-0F59E4F537D9" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E008E77-4062-44A9-AD98-840AC0983D8A" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16818016-0256-4503-8740-6CDBDDDD3C77" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED019ED4-F39D-412D-A434-CDE919008716" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9BC15E9-28C1-4578-83F0-C4FAA1E5F6F5" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2847991-B3A8-4AD7-BA6E-33BBCFF942D4" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A387B777-6D05-4015-9AC2-496138961266" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "476D6DFF-BA04-4F2C-9A78-D0E896A842D3" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FE248AE-6EC1-4AF9-B960-199910EF3C8F" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49C89589-3969-4EFC-ABD6-B982AC81AF45" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7EF60C0-AF4F-466E-9EBE-3EBA55024019" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "296E08E8-7F9A-418C-8EEE-6C997B40A7FC" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "243C970A-DDE5-4C1C-8E19-DAFF5316343A" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90866C6B-32CF-4E08-9103-4F826963364F" }, { "criteria": "cpe:2.3:a:maynard_johnson:oprofile:0.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E18D8FFF-BA38-4580-80BA-AEE6B794B6C5" } ], "operator": "OR" } ] } ]