Required CVE Record Information
Description
Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line.
References 11 Total
- openwall.com: [oss-security] 20110623 Re: CVE requests: opie off by one and setuid() failure mailing-list
- openwall.com: [oss-security] 20110622 CVE requests: opie off by one and setuid() failure mailing-list
- hermes.opensuse.org: openSUSE-SU-2011:0848 vendor-advisory
- https://bugzilla.novell.com/show_bug.cgi?id=698772
- https://bugzillafiles.novell.org/attachment.cgi?id=435902
- debian.org: DSA-2281 vendor-advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631344
- hermes.opensuse.org: SUSE-SU-2011:0849 vendor-advisory
- securityfocus.com: 48390 vdb-entry
- secunia.com: 45448 third-party-advisory
- secunia.com: 45136 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 11 Total
- openwall.com: [oss-security] 20110623 Re: CVE requests: opie off by one and setuid() failure mailing-listx_transferred
- openwall.com: [oss-security] 20110622 CVE requests: opie off by one and setuid() failure mailing-listx_transferred
- hermes.opensuse.org: openSUSE-SU-2011:0848 vendor-advisoryx_transferred
- https://bugzilla.novell.com/show_bug.cgi?id=698772 x_transferred
- https://bugzillafiles.novell.org/attachment.cgi?id=435902 x_transferred
- debian.org: DSA-2281 vendor-advisoryx_transferred
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631344 x_transferred
- hermes.opensuse.org: SUSE-SU-2011:0849 vendor-advisoryx_transferred
- securityfocus.com: 48390 vdb-entryx_transferred
- secunia.com: 45448 third-party-advisoryx_transferred
- secunia.com: 45136 third-party-advisoryx_transferred