CVE-2011-3364
NetworkManager: Console user can escalate to root via newlines in ifcfg-rh connection name
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
Incomplete blacklist vulnerability in the svEscape function in settings/plugins/ifcfg-rh/shvar.c in the ifcfg-rh plug-in for GNOME NetworkManager 0.9.1, 0.9.0, 0.8.1, and possibly other versions, when PolicyKit is configured to allow users to create new connections, allows local users to execute arbitrary commands via a newline character in the name for a new network connection, which is not properly handled when writing to the ifcfg file.
Vulnerabilidad de lista negra incompleta en la función svEscape en el fichero settings/plugins/ifcfg-rh/shvar.c del complemento ifcfg-rh para GNOME NetworkManager v0.9.1, v0.9.0, v0.8.1 y posiblemente otras versiones, cuando PolicyKit esta configurado para permitir a los usuarios crear nuevas conexiones, permite a usuarios locales ejecutar comandos de su elección a través de un carácter de nueva línea en el nombre de una nueva conexión de red, el cual no correctamente tratado al escribir en el fichero ifcfg.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2011-08-30 CVE Reserved
- 2011-09-27 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (6)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
http://xorl.wordpress.com/2011/10/09/cve-2011-3364-gnome-networkmanager-local-privilege-escalation | 2024-08-06 | |
https://bugzilla.redhat.com/show_bug.cgi?id=737338 | 2024-08-06 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Gnome Search vendor "Gnome" | Ifcfg-rh Plug-in Search vendor "Gnome" for product "Ifcfg-rh Plug-in" | * | - |
Affected
| ||||||
Gnome Search vendor "Gnome" | Networkmanager Search vendor "Gnome" for product "Networkmanager" | 0.8.1 Search vendor "Gnome" for product "Networkmanager" and version "0.8.1" | - |
Safe
| ||||||
Gnome Search vendor "Gnome" | Networkmanager Search vendor "Gnome" for product "Networkmanager" | 0.9.0 Search vendor "Gnome" for product "Networkmanager" and version "0.9.0" | - |
Safe
| ||||||
Gnome Search vendor "Gnome" | Networkmanager Search vendor "Gnome" for product "Networkmanager" | 0.9.1 Search vendor "Gnome" for product "Networkmanager" and version "0.9.1" | - |
Safe
|