CVE-2011-1551

Currently unrated

Key Information:

Vendor: Novell
Status: Opensuse Factory
Vendor: CVE Published:; 30 March 2011

Summary

SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ directory tree to the web-service user account, which might allow local users to gain privileges by leveraging access to this account during root filesystem operations by the Cobbler daemon.

References

http://openwall.com/lists/oss-security/2011/03/23/11

mailing-listx_refsource_MLIST

https://exchange.xforce.ibmcloud.com/vulnerabilities/66487

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 30, 2011
Vulnerability Reserved
Mar 30, 2011

Collectors

NVD DatabaseMitre Database