CVE-2011-1154

CVSS V2 Medium 6.9 CVSS V3 None
Description
The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name.
Overview
  • CVE ID
  • CVE-2011-1154
  • Assigner
  • secalert@redhat.com
  • Vulnerability Status
  • Modified
  • Published Version
  • 2011-03-30T22:55:02
  • Last Modified Date
  • 2011-04-21T02:33:30
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:gentoo:logrotate:*:*:*:*:*:*:*:* 1 OR 3.7.9
cpe:2.3:a:gentoo:logrotate:3.3:r2:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.5.9:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.5.9:r1:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.6.5:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.6.5:r1:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.1:r1:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.1:r2:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.6:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:gentoo:logrotate:3.7.8:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:L/AC:M/Au:N/C:C/I:C/A:C
  • Access Vector
  • LOCAL
  • Access Compatibility
  • MEDIUM
  • Authentication
  • NONE
  • Confidentiality Impact
  • COMPLETE
  • Integrity Impact
  • COMPLETE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 6.9
  • Severity
  • MEDIUM
  • Exploitability Score
  • 3.4
  • Impact Score
  • 10
References
Reference URL Reference Tags
http://openwall.com/lists/oss-security/2011/03/10/3
http://openwall.com/lists/oss-security/2011/03/06/4
http://openwall.com/lists/oss-security/2011/03/07/6
http://openwall.com/lists/oss-security/2011/03/05/4
http://openwall.com/lists/oss-security/2011/03/04/16
http://openwall.com/lists/oss-security/2011/03/04/18
http://openwall.com/lists/oss-security/2011/03/04/26
http://openwall.com/lists/oss-security/2011/03/06/5
http://openwall.com/lists/oss-security/2011/03/10/7
http://openwall.com/lists/oss-security/2011/03/04/27
http://openwall.com/lists/oss-security/2011/03/04/29
http://openwall.com/lists/oss-security/2011/03/05/8
http://openwall.com/lists/oss-security/2011/03/11/3
http://openwall.com/lists/oss-security/2011/03/07/11 Patch
http://openwall.com/lists/oss-security/2011/03/06/3
http://openwall.com/lists/oss-security/2011/03/04/17
http://openwall.com/lists/oss-security/2011/03/04/33
http://openwall.com/lists/oss-security/2011/03/04/19
http://openwall.com/lists/oss-security/2011/03/14/26
http://openwall.com/lists/oss-security/2011/03/04/25
http://openwall.com/lists/oss-security/2011/03/11/5
http://openwall.com/lists/oss-security/2011/03/08/5
http://openwall.com/lists/oss-security/2011/03/04/31
http://openwall.com/lists/oss-security/2011/03/06/6
http://openwall.com/lists/oss-security/2011/03/10/6
http://www.vupen.com/english/advisories/2011/0791 Vendor Advisory
http://openwall.com/lists/oss-security/2011/03/04/30
http://openwall.com/lists/oss-security/2011/03/04/28
http://openwall.com/lists/oss-security/2011/03/04/24
http://openwall.com/lists/oss-security/2011/03/04/32
http://openwall.com/lists/oss-security/2011/03/07/5
http://openwall.com/lists/oss-security/2011/03/04/22
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056992.html Patch
http://openwall.com/lists/oss-security/2011/03/23/11
https://bugzilla.redhat.com/show_bug.cgi?id=680796 Patch
http://openwall.com/lists/oss-security/2011/03/05/6
http://openwall.com/lists/oss-security/2011/03/10/2
http://secunia.com/advisories/43955
http://www.vupen.com/english/advisories/2011/0961
http://www.redhat.com/support/errata/RHSA-2011-0407.html
http://www.vupen.com/english/advisories/2011/0872
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057845.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:065
History
Created Old Value New Value Data Type Notes
2022-05-10 11:00:41 Added to TrackCVE