Published: 03/07/2012 Updated: 29/08/2017

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 169

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

Subscribe to Automatic Bug Reporting Tool

The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and previous versions, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.suid_dumpable option is set to 2, which allows local users to obtain sensitive information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat automatic bug reporting tool

Synopsis Low: abrt, libreport, btparser, and python-meh security and bug fix update Type/Severity Security Advisory: Low Topic Updated abrt, libreport, btparser, and python-meh packages that fix twosecurity issues and several bugs are now available for Red Hat EnterpriseLinux 6The Red Hat Security Response ...

CWE-264 https://fedorahosted.org/abrt/changeset/23d6997d7886abe118c28254f7f73f0b19b2d4e0 http://www.securityfocus.com/bid/54121 http://rhn.redhat.com/errata/RHSA-2012-0841.html https://exchange.xforce.ibmcloud.com/vulnerabilities/76524 https://access.redhat.com/errata/RHSA-2012:0841 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-1106

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect