CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-0988

pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running OES Netware extensions, creates a world-writeable directory, which allows local users to overwrite arbitrary files and gain privileges via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.5%

CVSS Severity

CVSS v2 Score 4.4

References

http://secunia.com/advisories/44039
https://exchange.xforce.ibmcloud.com/vulnerabilities/66618
https://hermes.opensuse.org/messages/7849430
http://secunia.com/advisories/44039
https://exchange.xforce.ibmcloud.com/vulnerabilities/66618
https://hermes.opensuse.org/messages/7849430

Products affected by CVE-2011-0988

Pureftpd » Pure-Ftpd » Version: 1.0.22

cpe:2.3:a:pureftpd:pure-ftpd:1.0.22
Novell » Suse Linux » Version: 10

cpe:2.3:o:novell:suse_linux:10
Novell » Suse Linux » Version: 11

cpe:2.3:o:novell:suse_linux:11

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-0988

Products

Pricing

Contact Us