CVE-2011-0468
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
04/04/2011
Last modified:
11/04/2025
Description
The aaa_base package before 11.3-8.9.1 in SUSE openSUSE 11.3, and before 11.4-54.62.1 in openSUSE 11.4, allows local users to gain privileges via shell metacharacters in a filename, related to tab expansion.
Impact
Base Score 2.0
6.90
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
- http://lists.opensuse.org/opensuse-updates/2011-03/msg00010.html
- http://secunia.com/advisories/43825
- http://support.novell.com/security/cve/CVE-2011-0468.html
- http://www.osvdb.org/71253
- http://www.securityfocus.com/bid/46983
- https://bugzilla.novell.com/678827
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66245
- http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
- http://lists.opensuse.org/opensuse-updates/2011-03/msg00010.html
- http://secunia.com/advisories/43825
- http://support.novell.com/security/cve/CVE-2011-0468.html
- http://www.osvdb.org/71253
- http://www.securityfocus.com/bid/46983
- https://bugzilla.novell.com/678827
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66245