CVE-2011-0536
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2011-0536
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple untrusted search path vulnerabilities in elf/dl-object.c in certain modified versions of the GNU C Library (aka glibc or libc6), including glibc-2.5-49.el5_5.6 and glibc-2.12-1.7.el6_0.3 in Red Hat Enterprise Linux, allow local users to gain privileges via a crafted dynamic shared object (DSO) in a subdirectory of the current working directory during execution of a (1) setuid or (2) setgid program that has $ORIGIN in (a) RPATH or (b) RUNPATH within the program itself or a referenced library. NOTE: this issue exists because of an incorrect fix for CVE-2010-3847.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
GNU C Library 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
GNU C Library(glibc,libc6)是一种按照LGPL许可协议发布的开源免费的C语言编译程序。 GNU C Library存在安全漏洞。本地用户可借助当前工作目录的子目录中的特制动态共享对象获取特权。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2011-0536
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2011-0536
请登录查看更多情报信息。
- https://bugzilla.redhat.com/show_bug.cgi?id=667974x_refsource_CONFIRM
- http://www.vmware.com/security/advisories/VMSA-2011-0012.htmlx_refsource_CONFIRM
- https://launchpad.net/bugs/701783x_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13086vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2011-0536
Same Patch Batch · n/a · 2011-04-08 · 10 CVEs total
| CVE-2011-0465 | X.Org xrdb主机名称命令注入漏洞 | |
| CVE-2011-0997 | ISC DHCP dhclient响应处理shell元字符代码执行漏洞 | |
| CVE-2011-1071 | GNU C Library 'fnmatch()'栈扩展攻击漏洞 | |
| CVE-2011-1183 | Apache Tomcat 安全漏洞 | |
| CVE-2011-1475 | Apache Tomcat HTTP BIO连接器响应读取漏洞 | |
| CVE-2011-1491 | Roundcube Webmail登录表单敏感信息泄露漏洞 | |
| CVE-2011-1492 | Roundcube Webmail steps/utils/modcss.inc任意邮件中转漏洞 | |
| CVE-2011-1658 | GNU C Library ld.so本地权限提升漏洞 | |
| CVE-2011-1659 | GNU C Library posix/fnmatch.c整数溢出漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2011-0536
No comments yet