PT-2011-1213 · Suse · Opensuse+1

Matthias Weckbecker

Published

2011-03-14

Updated

2017-08-25

CVE-2011-0469

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:N/C:P/I:C/A:P

Name of the Vulnerable Software and Affected Versions openSUSE versions prior to March 11, 2011 open build service version 2.1

Description The issue is related to incorrect code generation management in openSUSE, allowing a remote attacker to inject arbitrary code when running some source services.

Recommendations For openSUSE versions prior to March 11, 2011, update to a version released after March 11, 2011. For open build service version 2.1, consider disabling the affected services until a patch is available.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

BDU:2017-02031

CVE-2011-0469

Affected Products

Open Build Service

Opensuse

PT-2011-1213 · Suse · Opensuse+1

CVE-2011-0469

Weakness Enumeration

Related Identifiers

Affected Products

References · 5