ID CVE-2011-0765
Summary Unspecified vulnerability in lft in pWhois Layer Four Traceroute (LFT) 3.x before 3.3 allows local users to gain privileges via a crafted command line.
References
Vulnerable Configurations
  • cpe:2.3:a:pwhois:layer_four_traceroute:3.0
    cpe:2.3:a:pwhois:layer_four_traceroute:3.0
  • cpe:2.3:a:pwhois:layer_four_traceroute:3.1
    cpe:2.3:a:pwhois:layer_four_traceroute:3.1
  • cpe:2.3:a:pwhois:layer_four_traceroute:3.2
    cpe:2.3:a:pwhois:layer_four_traceroute:3.2
CVSS
Base: 7.2 (as of 11-04-2011 - 11:26)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
NASL family Gentoo Local Security Checks
NASL id GENTOO_GLSA-201412-10.NASL
description The remote host is affected by the vulnerability described in GLSA-201412-10 (Multiple packages, Multiple vulnerabilities fixed in 2012) Vulnerabilities have been discovered in the packages listed below. Please review the CVE identifiers in the Reference section for details. EGroupware VTE Layer Four Traceroute (LFT) Suhosin Slock Ganglia Jabber to GaduGadu Gateway Impact : A context-dependent attacker may be able to gain escalated privileges, execute arbitrary code, cause Denial of Service, obtain sensitive information, or otherwise bypass security restrictions. Workaround : There is no known workaround at this time.
last seen 2019-02-21
modified 2015-04-13
plugin id 79963
published 2014-12-15
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=79963
title GLSA-201412-10 : Multiple packages, Multiple vulnerabilities fixed in 2012
refmap via4
bid 46477
cert-vn VU#946652
misc http://pwhois.org/lft/
Last major update 20-04-2011 - 22:33
Published 09-04-2011 - 22:55
Back to Top