PT-2014-2105 · Linux · Kbd
Published
2014-04-16
·
Updated
2024-06-15
·
CVE-2011-0460
CVSS v2.0
6.3
Medium
| Vector | AV:L/AC:M/Au:N/C:N/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
kbd versions 1.14.1 and earlier
Description
The issue allows local users to overwrite arbitrary files via a symlink attack on /dev/shm/defkeymap.map.
Recommendations
For versions 1.14.1 and earlier, consider restricting access to the init script to prevent arbitrary file overwrites until a patch is available.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kbd