Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2011-5060

Disclosure Date: January 13, 2012
CVE-2011-5060
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The par_mktmpdir function in the PAR module before 1.003 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which allows local users to overwrite files when another user extracts a PAR packed program, a different vulnerability in a different package than CVE-2011-4114.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • roderich schupp

Products

  • par-packer module,
  • par-packer module 0.63,
  • par-packer module 0.64,
  • par-packer module 0.65,
  • par-packer module 0.66,
  • par-packer module 0.67,
  • par-packer module 0.68,
  • par-packer module 0.69,
  • par-packer module 0.70,
  • par-packer module 0.71,
  • par-packer module 0.72,
  • par-packer module 0.73,
  • par-packer module 0.74,
  • par-packer module 0.75,
  • par-packer module 0.76,
  • par-packer module 0.77,
  • par-packer module 0.78,
  • par-packer module 0.79,
  • par-packer module 0.80,
  • par-packer module 0.81,
  • par-packer module 0.82,
  • par-packer module 0.83,
  • par-packer module 0.85,
  • par-packer module 0.86,
  • par-packer module 0.87,
  • par-packer module 0.88,
  • par-packer module 0.89,
  • par-packer module 0.90,
  • par-packer module 0.91,
  • par-packer module 0.92,
  • par-packer module 0.93,
  • par-packer module 0.94,
  • par-packer module 0.941,
  • par-packer module 0.942,
  • par-packer module 0.951,
  • par-packer module 0.952,
  • par-packer module 0.953,
  • par-packer module 0.954,
  • par-packer module 0.955,
  • par-packer module 0.956,
  • par-packer module 0.957,
  • par-packer module 0.958,
  • par-packer module 0.959,
  • par-packer module 0.960,
  • par-packer module 0.970,
  • par-packer module 0.973,
  • par-packer module 0.975,
  • par-packer module 0.976,
  • par-packer module 0.977,
  • par-packer module 0.978,
  • par-packer module 0.979,
  • par-packer module 0.980,
  • par-packer module 0.981,
  • par-packer module 0.982,
  • par-packer module 0.991,
  • par-packer module 0.992 01,
  • par-packer module 0.992 02,
  • par-packer module 0.992 03,
  • par-packer module 0.992 04,
  • par-packer module 0.992 05,
  • par-packer module 0.992 06,
  • par-packer module 1.000,
  • par-packer module 1.001

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis