CVE-2011-0460

The init script in kbd, possibly 1.14.1 and earlier, allows local users to overwrite arbitrary files via a symlink attack on /dev/shm/defkeymap.map.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:kbd-project:kbd:*:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:0.99:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.01:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.03:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.04:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.05:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.06:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.08:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.10:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.11:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.12:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.13:*:*:*:*:*:*:*
cpe:2.3:a:kbd-project:kbd:1.14:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-04-16 18:37

Updated : 2024-02-04 18:35


NVD link : CVE-2011-0460

Mitre link : CVE-2011-0460

CVE.ORG link : CVE-2011-0460


JSON object : View

Products Affected

kbd-project

  • kbd

opensuse

  • opensuse
CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')