CVE-2011-2495 in Linux Kernelinfo

Summary

fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user s password.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

06/15/2011

Disclosure

06/13/2012

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
60956	Linux Kernel access control	264	Not defined	Official fix	CVE-2011-2495

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Might our Artificial Intelligence support you?

Check our Alexa App!