CVE-2011-4060

Published Oct 18, 2011

Last updated 7 years ago

Overview

Description: The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 4.9
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:N/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-59

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:qnx:neutrino_rtos:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87489F9A-4D58-47A1-9759-144DAF02A3EF"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

https://nvd.nist.gov/vuln/detail/CVE-2011-4060
http://securityreason.com/securityalert/8475
http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc
http://www.osvdb.org/71784
http://www.qnx.com/developers/articles/rel_5189_46.html
http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html
http://www.securityfocus.com/archive/1/516958
http://www.securityfocus.com/archive/1/518659
http://www.securityfocus.com/bid/46838

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References