CVE-2011-2910 in ax25-toolsinfo

Summary

The AX.25 daemon (ax25d) in ax25-tools before 0.0.8-13 does not check the return value of a setuid call. The setuid call is responsible for dropping privileges but if the call fails the daemon would continue to run with root privileges which can allow possible privilege escalation.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

07/27/2011

Moderation

VulDB entry created

Entries

1: VDB-145819

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

5.4

EPSS

0.00130

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2910
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2910
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2910/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!