CVE-2011-1946 - OpenCVE

gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of these accounts.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hongli Lai	Libgnomesu

Configuration 1 [-]

cpe:2.3:a:hongli_lai:libgnomesu:1.0.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://openwall.com/lists/oss-security/2011/05/30/2
http://openwall.com/lists/oss-security/2011/05/31/11
http://www.securityfocus.com/bid/48035
https://bugzilla.novell.com/show_bug.cgi?id=695627
https://exchange.xforce.ibmcloud.com/vulnerabilities/67720

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-07-07T21:00:00

Updated: 2024-08-06T22:46:00.850Z

Reserved: 2011-05-09T00:00:00

Link: CVE-2011-1946

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-07-07T21:55:02.133

Modified: 2017-08-17T01:34:28.370

Link: CVE-2011-1946

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-05-30T00:00:00", "descriptions": [{"lang": "en", "value": "gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of these accounts."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/05/31/11"}, {"name": "libgnomesu-setuid-privilege-escalation(67720)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67720"}, {"name": "48035", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/48035"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=695627"}, {"name": "[oss-security] 20110530 CVE request: libgnomesu privilege escalation", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/05/30/2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-1946", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of these accounts."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/05/31/11"}, {"name": "libgnomesu-setuid-privilege-escalation(67720)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67720"}, {"name": "48035", "refsource": "BID", "url": "http://www.securityfocus.com/bid/48035"}, {"name": "https://bugzilla.novell.com/show_bug.cgi?id=695627", "refsource": "CONFIRM", "url": "https://bugzilla.novell.com/show_bug.cgi?id=695627"}, {"name": "[oss-security] 20110530 CVE request: libgnomesu privilege escalation", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/05/30/2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:46:00.850Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/05/31/11"}, {"name": "libgnomesu-setuid-privilege-escalation(67720)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67720"}, {"name": "48035", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/48035"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=695627"}, {"name": "[oss-security] 20110530 CVE request: libgnomesu privilege escalation", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/05/30/2"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-1946", "datePublished": "2011-07-07T21:00:00", "dateReserved": "2011-05-09T00:00:00", "dateUpdated": "2024-08-06T22:46:00.850Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hongli_lai:libgnomesu:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "32364E8A-2810-492A-9008-6EEA80D02ED9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of these accounts."}, {"lang": "es", "value": "gnomesu-pam-backend en libgnomesu v1.0.0 muestra un mensaje de error pero contin\u00faa con la ejecuci\u00f3n normal en caso de fallo de la funci\u00f3n setuid o setgid, lo que permite a usuarios locales conseguir privilegios, aprovechando el acceso a dos cuentas de usuario sin privilegios, y ejecutando muchos procesos en una de estas cuentas."}], "id": "CVE-2011-1946", "lastModified": "2017-08-17T01:34:28.370", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-07-07T21:55:02.133", "references": [{"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2011/05/30/2"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2011/05/31/11"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/48035"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=695627"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67720"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}