Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.3
CVSSv2

CVE-2011-1089

Published: 10/04/2011 Updated: 07/12/2016
CVSS v2 Base Score: 3.3 | Impact Score: 4.9 | Exploitability Score: 3.4
VMScore: 294
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N
Subscribe to Gnu

Vulnerability Summary

The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and previous versions does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.

Vulnerable Product Search on Vulmon Subscribe to Product

gnu glibc 1.03

gnu glibc 1.02

gnu glibc 1.09

gnu glibc 1.08

gnu glibc 2.0.5

gnu glibc 2.0.4

gnu glibc 2.0.3

gnu glibc 2.0.2

gnu glibc 2.0.1

gnu glibc 2.1.2

gnu glibc 2.1.3

gnu glibc 2.1.3.10

gnu glibc 2.1.9

gnu glibc 2.11.3

gnu glibc 2.11.2

gnu glibc 2.12.2

gnu glibc

gnu glibc 2.3.5

gnu glibc 2.8

gnu glibc 2.9

gnu glibc 2.10

gnu glibc 2.2.4

gnu glibc 2.2.5

gnu glibc 2.3

gnu glibc 2.3.1

gnu glibc 2.3.6

gnu glibc 2.4

gnu glibc 2.6

gnu glibc 2.6.1

gnu glibc 2.5

gnu glibc 1.01

gnu glibc 1.04

gnu glibc 1.07

gnu glibc 2.11

gnu glibc 2.1

gnu glibc 2.0.6

gnu glibc 2.10.2

gnu glibc 2.2.3

gnu glibc 2.3.10

gnu glibc 2.1.1

gnu glibc 2.2.1

gnu glibc 2.3.3

gnu glibc 2.12.0

gnu glibc 1.09.1

gnu glibc 1.00

gnu glibc 1.05

gnu glibc 1.06

gnu glibc 2.11.1

gnu glibc 2.10.1

gnu glibc 2.7

gnu glibc 2.0

gnu glibc 2.2.2

gnu glibc 2.3.2

gnu glibc 2.1.1.6

gnu glibc 2.2

gnu glibc 2.3.4

gnu glibc 2.5.1

gnu glibc 2.12.1

Vendor Advisories

Ubuntu Security Notice: eglibc, glibc vulnerabilities
Multiple vulnerabilities were discovered and fixed in the GNU C Library ...
Red Hat: Low: glibc security, bug fix, and enhancement update
Synopsis Low: glibc security, bug fix, and enhancement update Type/Severity Security Advisory: Low Topic Updated glibc packages that fix two security issues, several bugs, and addvarious enhancements are now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as ...
Red Hat: Moderate: glibc security and bug fix update
Synopsis Moderate: glibc security and bug fix update Type/Severity Security Advisory: Moderate Topic Updated glibc packages that fix multiple security issues and one bug arenow available for Red Hat Enterprise Linux 4The Red Hat Security Response Team has rated this update as having moderatesecurity impact ...
Red Hat: Moderate: glibc security update
Synopsis Moderate: glibc security update Type/Severity Security Advisory: Moderate Topic Updated glibc packages that fix multiple security issues are now availablefor Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulnerability S ...

References

CWE-16http://openwall.com/lists/oss-security/2011/04/01/2http://openwall.com/lists/oss-security/2011/03/22/6http://openwall.com/lists/oss-security/2011/03/04/11http://openwall.com/lists/oss-security/2011/03/04/12http://sourceware.org/bugzilla/show_bug.cgi?id=12625http://openwall.com/lists/oss-security/2011/03/14/5http://openwall.com/lists/oss-security/2011/03/31/4http://www.securityfocus.com/bid/46740http://openwall.com/lists/oss-security/2011/03/07/9http://openwall.com/lists/oss-security/2011/03/04/9http://openwall.com/lists/oss-security/2011/03/05/3https://bugzilla.redhat.com/show_bug.cgi?id=688980http://openwall.com/lists/oss-security/2011/03/04/10http://openwall.com/lists/oss-security/2011/03/22/4http://openwall.com/lists/oss-security/2011/03/14/16http://openwall.com/lists/oss-security/2011/03/05/7http://openwall.com/lists/oss-security/2011/03/31/3http://openwall.com/lists/oss-security/2011/03/15/6http://openwall.com/lists/oss-security/2011/03/14/7http://www.redhat.com/support/errata/RHSA-2011-1526.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2011:179http://www.mandriva.com/security/advisories?name=MDVSA-2011:178https://nvd.nist.govhttps://usn.ubuntu.com/1396-1/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987buffer overflowCVE-2024-28890CVE-2024-27574CVE-2024-27347CVE-2024-31450privilegeSSTICVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook