Directory traversal vulnerability in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to overwrite arbitrary files via a .. (dot dot) in the --save argument, related to the --session-dir argument, a different vulnerability than CVE-2011-1760.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2011-06-09 21:55
Updated : 2024-02-04 17:54
NVD link : CVE-2011-2472
Mitre link : CVE-2011-2472
CVE.ORG link : CVE-2011-2472
JSON object : View
Products Affected
maynard_johnson
- oprofile
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')