Published: 12/03/2013 Updated: 13/02/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and previous versions allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store information about crashes."

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat automatic bug reporting tool 2.0.6
redhat automatic bug reporting tool 2.0.4.981
redhat automatic bug reporting tool 2.0.8
redhat automatic bug reporting tool
redhat automatic bug reporting tool 2.0.5
redhat automatic bug reporting tool 2.0.2
redhat automatic bug reporting tool 2.0.7
redhat automatic bug reporting tool 2.0.4.980
redhat automatic bug reporting tool 2.0.1
redhat automatic bug reporting tool 2.0.0
redhat automatic bug reporting tool 2.0.4
redhat automatic bug reporting tool 2.0.3

Synopsis Important: abrt and libreport security update Type/Severity Security Advisory: Important Topic Updated abrt and libreport packages that fix two security issues are nowavailable for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant security impact ...

CWE-264 CWE-362 https://bugzilla.redhat.com/show_bug.cgi?id=887866 http://rhn.redhat.com/errata/RHSA-2013-0215.html http://git.fedorahosted.org/cgit/libreport.git/commit/?id=3bbf961b1884dd32654dd39b360dd78ef294b10a https://access.redhat.com/errata/RHSA-2013:0215 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-5660

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect