{ "id": "CVE-2011-4099", "sourceIdentifier": "secalert@redhat.com", "published": "2014-02-08T00:55:05.863", "lastModified": "2014-02-10T15:09:31.333", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors." }, { "lang": "es", "value": "El programa capsh en libcap anterior a 2.22 no cambia el directorio de trabajo actual cuando la opci\u00f3n --chroot es especificada, lo que permite a usuarios locales evadir las restricciones chroot a trav\u00e9s de vectores no especificados." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 4.6 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 3.9, "impactScore": 6.4, "acInsufInfo": true, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-264" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:*:*:*:*:*:*:*:*", "versionEndIncluding": "2.21", "matchCriteriaId": "37972F96-847C-4FC3-86ED-26A8B921CC86" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.00:*:*:*:*:*:*:*", "matchCriteriaId": "46EA77FD-A32F-4C18-9480-3B29F10C7969" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.01:*:*:*:*:*:*:*", "matchCriteriaId": "3A3F14FF-14FB-4324-954A-2D358D330079" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.02:*:*:*:*:*:*:*", "matchCriteriaId": "D8441A7F-E9B1-4D8C-B537-E0695962FFEA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.03:*:*:*:*:*:*:*", "matchCriteriaId": "70F66014-3C80-49A0-93FB-A26270FDB11A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.04:*:*:*:*:*:*:*", "matchCriteriaId": "F91CACA9-16A5-4555-A04E-311596E458C4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.05:*:*:*:*:*:*:*", "matchCriteriaId": "A0B2C85E-5B2A-4241-8FFD-FAE0EFB280E2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.06:*:*:*:*:*:*:*", "matchCriteriaId": "871942FF-7CA5-4C19-A245-9F8F9F9E5EB0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.07:*:*:*:*:*:*:*", "matchCriteriaId": "CC941B9F-C09A-4B51-9406-31D7EA9C69E4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.08:*:*:*:*:*:*:*", "matchCriteriaId": "FAB75E70-0033-414F-9803-CAA65BF4B489" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.09:*:*:*:*:*:*:*", "matchCriteriaId": "6204CACC-5B6A-4C14-83A8-929C6A120F9D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.10:*:*:*:*:*:*:*", "matchCriteriaId": "F3D34C8E-1924-4032-9C2C-0DC4252C99E5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.11:*:*:*:*:*:*:*", "matchCriteriaId": "17BB37BB-C4D9-4302-A309-71806A27A5CF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.12:*:*:*:*:*:*:*", "matchCriteriaId": "5E85FEE1-A845-45A7-BCC0-D3100A914FB9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.13:*:*:*:*:*:*:*", "matchCriteriaId": "3A38D4EF-EC74-4B9A-A540-9F3974B812F4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.14:*:*:*:*:*:*:*", "matchCriteriaId": "B5A519A7-4E10-45CE-83B4-86235CB2DB7D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.15:*:*:*:*:*:*:*", "matchCriteriaId": "7AD0FC55-E634-4067-A92F-0E4FAD1BE1AF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.16:*:*:*:*:*:*:*", "matchCriteriaId": "66700E0B-D90F-4078-A6AB-FAA4D7E3BE6C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.17:*:*:*:*:*:*:*", "matchCriteriaId": "9BBE43A0-2E40-4D61-BBEA-F4969E7F6BA1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.18:*:*:*:*:*:*:*", "matchCriteriaId": "BA0A31AE-A947-4645-A55E-2048C6E08A4B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.19:*:*:*:*:*:*:*", "matchCriteriaId": "614134AD-8C32-4A72-9570-56D458B336B0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:libcap:libcap:2.20:*:*:*:*:*:*:*", "matchCriteriaId": "B2A3B426-F41A-4833-892E-913BC87B01FC" } ] } ] } ], "references": [ { "url": "http://rhn.redhat.com/errata/RHSA-2011-1694.html", "source": "secalert@redhat.com" }, { "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722694", "source": "secalert@redhat.com", "tags": [ "Vendor Advisory" ] }, { "url": "https://sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222", "source": "secalert@redhat.com" } ] }