CVE-2016-1611

moderate-risk

Published 2016-08-01

Novell Filr 1.2 before Hot Patch 6 and 2.0 before Hot Patch 2 uses world-writable permissions for /etc/profile.d/vainit.sh, which allows local users to gain privileges by replacing this file's content with arbitrary shell commands.

Do I need to act?

-

0.23% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

!

1 public exploit available

40161

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

7

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (2)

Filr

Filr

Affected Vendors

Novell

References (8)

http://seclists.org/bugtraq/2016/Jul/119

http://www.securityfocus.com/bid/92113

https://www.exploit-db.com/exploits/40161/

https://www.novell.com/support/kb/doc.php?id=7017689

http://seclists.org/bugtraq/2016/Jul/119

http://www.securityfocus.com/bid/92113

https://www.exploit-db.com/exploits/40161/

https://www.novell.com/support/kb/doc.php?id=7017689

39

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 8/34 · Low

Exposure 7/34 · Low