CVE-2012-2653

NONECVSS 0.0

0.0

arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon.

🔗 References (20)

secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-June/082553.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-June/082565.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-June/082569.html
secalert@redhathttp://www.debian.org/security/2012/dsa-2481
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2012:113
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/05/24/12
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/05/24/13
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/05/24/14
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/05/25/5
secalert@redhathttps://security.gentoo.org/glsa/201607-16
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082553.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082565.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082569.html
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2012/dsa-2481
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2012:113

Is Your Infrastructure Affected by CVE-2012-2653?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-2653

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-2653?