CVE-2011-1526 : Detail

CVE-2011-1526

Improper Privilege Management
A04-Insecure Design
1.01%V3
Network
2011-07-11
18h00 +00:00
2018-10-09
16h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

ftpd.c in the GSS-API FTP daemon in MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.1 and earlier does not check the krb5_setegid return value, which allows remote authenticated users to bypass intended group access restrictions, and create, overwrite, delete, or read files, via standard FTP commands, related to missing autoconf tests in a configure script.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-269 Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Metrics

Metrics Score Severity CVSS Vector Source
V2 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Products Mentioned

Configuraton 0

Mit>>Krb5-appl >> Version To (excluding) 1.0.1

Configuraton 0

Debian>>Debian_linux >> Version 5.0

Debian>>Debian_linux >> Version 6.0

Configuraton 0

Fedoraproject>>Fedora >> Version 14

Fedoraproject>>Fedora >> Version 15

Configuraton 0

Opensuse>>Opensuse >> Version 11.3

Opensuse>>Opensuse >> Version 11.4

Suse>>Linux_enterprise_desktop >> Version 10

Suse>>Linux_enterprise_desktop >> Version 11

Suse>>Linux_enterprise_server >> Version 10

Suse>>Linux_enterprise_server >> Version 10

Suse>>Linux_enterprise_server >> Version 10

Suse>>Linux_enterprise_server >> Version 11

Suse>>Linux_enterprise_server >> Version 11

    Suse>>Linux_enterprise_software_development_kit >> Version 10

    Suse>>Linux_enterprise_software_development_kit >> Version 11

    References

    http://www.redhat.com/support/errata/RHSA-2011-0920.html
    Tags : vendor-advisory, x_refsource_REDHAT
    http://secunia.com/advisories/48101
    Tags : third-party-advisory, x_refsource_SECUNIA
    http://secunia.com/advisories/45145
    Tags : third-party-advisory, x_refsource_SECUNIA
    http://secunia.com/advisories/45157
    Tags : third-party-advisory, x_refsource_SECUNIA
    http://securityreason.com/securityalert/8301
    Tags : third-party-advisory, x_refsource_SREASON
    http://www.mandriva.com/security/advisories?name=MDVSA-2011:117
    Tags : vendor-advisory, x_refsource_MANDRIVA
    http://www.securityfocus.com/bid/48571
    Tags : vdb-entry, x_refsource_BID
    http://www.osvdb.org/73617
    Tags : vdb-entry, x_refsource_OSVDB
    http://www.debian.org/security/2011/dsa-2283
    Tags : vendor-advisory, x_refsource_DEBIAN