CVE-2011-1155 in logrotateinfo

Zusammenfassung

von MITRE

The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service (rotation outage) via a (1) \n (newline) or (2) \ (backslash) character in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

03.03.2011

Veröffentlichung

30.03.2011

Moderieren

akzeptiert

Eintrag

VDB-56968

CPE

bereit

CWE

CWE-399 (bestätigt)

CVSS

1.9 (NVD)

EPSS

0.00387

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1155
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1155
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1155/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!