CVE-2011-1681

{"id": "CVE-2011-1681", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-04-10T02:55:02.633", "references": [{"url": "http://openwall.com/lists/oss-security/2011/03/04/10", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/04/11", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/04/12", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/04/9", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/05/3", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/05/7", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/07/9", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/14/16", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/14/5", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/14/7", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/15/6", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/22/4", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/22/6", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/31/3", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/03/31/4", "source": "cve@mitre.org"}, {"url": "http://openwall.com/lists/oss-security/2011/04/01/2", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/44904", "source": "cve@mitre.org"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=688980", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66699", "source": "cve@mitre.org"}, {"url": "https://hermes.opensuse.org/messages/8711677", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-16"}]}], "descriptions": [{"lang": "en", "value": "vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089."}, {"lang": "es", "value": "vmware-hgfsmounter en VMware Open Virtual Machine Tools (tambi\u00e9n conocido como open-vm-tools) v8.4.2-261024 y anteriores se a\u00f1aden al fichero /etc/mtab sin primero verificar si los l\u00edmites de recursos interfieren, lo que permite a usuarios locales provocar la corrupci\u00f3n de este fichero a trav\u00e9s de un proceso con un valor peque\u00f1o RLIMIT_FSIZE, un asunto relacionado con CVE-2011-1089."}], "lastModified": "2017-08-17T01:34:19.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:open-vm-tools:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30920B5D-E4DF-449A-80A9-C72B662E2FE9", "versionEndIncluding": "8.4.2-261024"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}