Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privileges.
                
            References
                    | Link | Resource | 
|---|---|
| https://bugs.launchpad.net/calibre/+bug/885027 | Exploit Issue Tracking Third Party Advisory | 
| https://git.zx2c4.com/calibre-mount-helper-exploit/about/ | Exploit Third Party Advisory | 
| https://lwn.net/Articles/464824/ | Not Applicable Third Party Advisory | 
| https://www.openwall.com/lists/oss-security/2011/11/02/2 | Mailing List Third Party Advisory | 
| https://bugs.launchpad.net/calibre/+bug/885027 | Exploit Issue Tracking Third Party Advisory | 
| https://git.zx2c4.com/calibre-mount-helper-exploit/about/ | Exploit Third Party Advisory | 
| https://lwn.net/Articles/464824/ | Not Applicable Third Party Advisory | 
| https://www.openwall.com/lists/oss-security/2011/11/02/2 | Mailing List Third Party Advisory | 
Configurations
                    History
                    21 Nov 2024, 01:31
| Type | Values Removed | Values Added | 
|---|---|---|
| References | () https://bugs.launchpad.net/calibre/+bug/885027 - Exploit, Issue Tracking, Third Party Advisory | |
| References | () https://git.zx2c4.com/calibre-mount-helper-exploit/about/ - Exploit, Third Party Advisory | |
| References | () https://lwn.net/Articles/464824/ - Not Applicable, Third Party Advisory | |
| References | () https://www.openwall.com/lists/oss-security/2011/11/02/2 - Mailing List, Third Party Advisory | 
01 Nov 2021, 15:41
| Type | Values Removed | Values Added | 
|---|---|---|
| References | (MISC) https://git.zx2c4.com/calibre-mount-helper-exploit/about/ - Exploit, Third Party Advisory | |
| References | (MISC) https://lwn.net/Articles/464824/ - Not Applicable, Third Party Advisory | |
| References | (MISC) https://bugs.launchpad.net/calibre/+bug/885027 - Exploit, Issue Tracking, Third Party Advisory | |
| References | (MISC) https://www.openwall.com/lists/oss-security/2011/11/02/2 - Mailing List, Third Party Advisory | |
| CVSS | v2 : v3 : | v2 : 10.0 v3 : 9.8 | 
| CPE | cpe:2.3:a:calibre-ebook:calibre:-:*:*:*:*:*:*:* | 
27 Oct 2021, 01:15
| Type | Values Removed | Values Added | 
|---|---|---|
| New CVE | 
Information
                Published : 2021-10-27 01:15
Updated : 2024-11-21 01:31
NVD link : CVE-2011-4124
Mitre link : CVE-2011-4124
CVE.ORG link : CVE-2011-4124
JSON object : View
Products Affected
                calibre-ebook
- calibre
CWE
                
                    
                        
                        CWE-20
                        
            Improper Input Validation
