語系:
https://access.redhat.com/errata/RHSA-2011:0413
https://access.redhat.com/security/cve/cve-2011-0536
https://access.redhat.com/security/cve/cve-2011-1071
https://access.redhat.com/security/cve/cve-2011-1095
嚴重性: Medium
ID: 53292
檔案名稱: redhat-RHSA-2011-0413.nasl
版本: 1.22
類型: local
代理程式: unix
已發布: 2011/4/5
已更新: 2021/1/14
支援的感應器: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
風險因素: High
分數: 7.4
風險因素: Medium
基本分數: 6.9
時間分數: 5.7
媒介: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C
CPE: p-cpe:/a:redhat:enterprise_linux:glibc, p-cpe:/a:redhat:enterprise_linux:glibc-common, p-cpe:/a:redhat:enterprise_linux:glibc-debuginfo, p-cpe:/a:redhat:enterprise_linux:glibc-devel, p-cpe:/a:redhat:enterprise_linux:glibc-headers, p-cpe:/a:redhat:enterprise_linux:glibc-static, p-cpe:/a:redhat:enterprise_linux:glibc-utils, p-cpe:/a:redhat:enterprise_linux:nscd, cpe:/o:redhat:enterprise_linux:6, cpe:/o:redhat:enterprise_linux:6.0
必要的 KB 項目: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
可被惡意程式利用: true
可輕鬆利用: Exploits are available
修補程式發佈日期: 2011/4/4
弱點發布日期: 2011/1/7
CANVAS (CANVAS)
Core Impact
Metasploit (glibc "$ORIGIN" Expansion Privilege Escalation)
CVE: CVE-2010-3847, CVE-2011-0536, CVE-2011-1071, CVE-2011-1095, CVE-2011-1658, CVE-2011-1659
RHSA: 2011:0413