Vulnerability Details CVE-2011-1836
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.3%
CVSS Severity
CVSS v2 Score 4.6
References
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html
- http://www.ubuntu.com/usn/USN-1188-1
- https://bugzilla.redhat.com/show_bug.cgi?id=729465
- https://launchpad.net/ecryptfs/+download
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html
- http://www.ubuntu.com/usn/USN-1188-1
- https://bugzilla.redhat.com/show_bug.cgi?id=729465
- https://launchpad.net/ecryptfs/+download
Products affected by CVE-2011-1836
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:-
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:58
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:60
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:61
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:62
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:63
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:64
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:65
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:66
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:67
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:68
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:69
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:70
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:71
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:72
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:73
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:74
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:75
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:76
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:77
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:78
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:79
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:80
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:81
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:82
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:83
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:84
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:85
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:86
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:87
-
cpe:2.3:a:ecryptfs:ecryptfs-utils:89
-
cpe:2.3:a:ecryptfs:ecryptfs_utils:58
-
cpe:2.3:a:ecryptfs:ecryptfs_utils:59
-
cpe:2.3:a:ecryptfs:ecryptfs_utils:60
-
cpe:2.3:a:ecryptfs:ecryptfs_utils:61