Published: 25/02/2011 Updated: 13/02/2023

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

logwatch.pl in Logwatch 7.3.6 allows remote malicious users to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.

Vulnerable Product	Search on Vulmon	Subscribe to Product
logwatch logwatch 7.3.6

Debian Bug report logs - #615995 CVE-2011-1018 Package: logwatch; Maintainer for logwatch is Willi Mann <willi@debianorg>; Source for logwatch is src:logwatch (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Tue, 1 Mar 2011 16:21:04 UTC Severity: grave Tags: security Found i ...

Dominik George discovered that logwatch did not properly sanitize log file names that were passed to the shell as part of a command If a remote attacker were able to generate specially crafted filenames (for example, via Samba logging), they could execute arbitrary code with root privileges ...

Dominik George discovered that Logwatch does not guard against shell meta-characters in crafted log file names (such as those produced by Samba) As a result, an attacker might be able to execute shell commands on the system running Logwatch For the oldstable distribution (lenny), this problem has been fixed in version 736cvs20080702-2lenny1 F ...

source: wwwsecurityfocuscom/bid/46554/info Logwatch is prone to a local privilege-escalation vulnerability Local attackers can exploit this issue execute arbitrary code with superuser privileges Successful exploits will result in the complete compromise of affected computers Failed exploit attempts will result in a denial-of-service c ...

CWE-20 http://secunia.com/advisories/43495 http://sourceforge.net/mailarchive/forum.php?thread_name=4D604843.7040303%40mblmail.net&forum_name=logwatch-devel http://sourceforge.net/tracker/?func=detail&aid=3184223&group_id=312875&atid=1316824 https://bugzilla.redhat.com/show_bug.cgi?id=680237 http://www.openwall.com/lists/oss-security/2011/02/24/15 http://www.securityfocus.com/bid/46554 http://logwatch.svn.sourceforge.net/viewvc/logwatch/scripts/logwatch.pl?r1=3&r2=26&pathrev=26 http://www.openwall.com/lists/oss-security/2011/02/24/13 http://www.vupen.com/english/advisories/2011/0581 http://secunia.com/advisories/43622 http://secunia.com/advisories/43356 http://www.vupen.com/english/advisories/2011/0596 http://www.redhat.com/support/errata/RHSA-2011-0324.html http://www.securitytracker.com/id?1025165 http://secunia.com/advisories/43644 http://www.debian.org/security/2011/dsa-2182 http://www.vupen.com/english/advisories/2011/0533 http://www.ubuntu.com/usn/USN-1078-1 http://secunia.com/advisories/43734 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055585.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055617.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055579.html http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615995 https://usn.ubuntu.com/1078-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/35386/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-1018

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect