Computer Security

PolicyKit privilege escalation
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



PolicyKit privilege escalation
Published:21.04.2011
Source:BUGTRAQ
SecurityVulns ID:11615
Type:local
Level:5/10
Description:privilege escalation via pkexec
Affected:POLICYKIT : policykit 0.96
CVE:CVE-2011-1485 (Race condition in the pkexec utility and polkitd daemon in PolicyKit (aka polkit) 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID.)
Original documentdocumentUBUNTU, [USN-1117-1] PolicyKit vulnerability (21.04.2011)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru