CVE-2011-1056

The installer for Metasploit Framework 3.5.1, when running on Windows, uses weak inherited permissions for the Metasploit installation directory, which allows local users to gain privileges by replacing critical files with a Trojan horse.

CVSS v2.0 6.2 MEDIUM

6.2^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 1.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://blog.metasploit.com/2011/02/metasploit-framework-352-released.html
http://osvdb.org/70857
http://secunia.com/advisories/43166	Vendor Advisory
http://www.vupen.com/english/advisories/2011/0371	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:metasploit:metasploit_framework:3.5.1:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-02-21 21:00

Updated : 2024-02-04 17:54

NVD link : CVE-2011-1056

Mitre link : CVE-2011-1056

CVE.ORG link : CVE-2011-1056

JSON object : View

Products Affected

metasploit

metasploit_framework

microsoft

windows

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2011-1056", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-02-21T21:00:00.833", "references": [{"url": "http://blog.metasploit.com/2011/02/metasploit-framework-352-released.html", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/70857", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/43166", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2011/0371", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The installer for Metasploit Framework 3.5.1, when running on Windows, uses weak inherited permissions for the Metasploit installation directory, which allows local users to gain privileges by replacing critical files with a Trojan horse."}, {"lang": "es", "value": "El instalador de Metasploit Framework versi\u00f3n 3.5.1, cuando es ejecutado en Windows, usa permisos heredados d\u00e9biles para el directorio installation de Metasploit, que permite a los usuarios locales obtener privilegios al reemplazar archivos cr\u00edticos con unos de tipo caballo de Troya."}], "lastModified": "2011-06-20T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:metasploit:metasploit_framework:3.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1D5B5D1-4A4D-46B8-A65E-5903BA2C6875"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}