Executive Summary

Informations
Name CVE-2012-3440 First vendor Publication 2012-08-08
Vendor Cve Last vendor Modification 2023-02-13

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:H/Au:N/C:N/I:C/A:C)
Cvss Base Score 5.6 Attack Range Local
Cvss Impact Score 9.2 Attack Complexity High
Cvss Expoit Score 1.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3440

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-59 Improper Link Resolution Before File Access ('Link Following')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:20533
 
Oval ID: oval:org.mitre.oval:def:20533
Title: VMware ESX third party update for Service Console package sudo
Description: A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.
Family: unix Class: vulnerability
Reference(s): CVE-2012-3440
 Version: 4
Platform(s): VMWare ESX Server 4.0
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:21267
 
Oval ID: oval:org.mitre.oval:def:21267
Title: RHSA-2012:1149: sudo security and bug fix update (Moderate)
Description: A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.
Family: unix Class: patch
Reference(s): RHSA-2012:1149-00
CESA-2012:1149
CVE-2012-3440
 Version: 4
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
 Product(s): sudo
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23250
 
Oval ID: oval:org.mitre.oval:def:23250
Title: ELSA-2012:1149: sudo security and bug fix update (Moderate)
Description: A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.
Family: unix Class: patch
Reference(s): ELSA-2012:1149-00
CVE-2012-3440
 Version: 6
Platform(s): Oracle Linux 5
 Product(s): sudo
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27534
 
Oval ID: oval:org.mitre.oval:def:27534
Title: DEPRECATED: ELSA-2012-1149 -- sudo security and bug fix update (moderate)
Description: [1.7.2p1-14.2] - added a workaround for a race condition in handling child processes Resolves: rhbz#844978 [1.7.2p1-14.1] - dont remove the sudoers: line from nsswitch.conf on update - use safe temporary file for nsswitch.conf - call restorecon after modifying nsswitch.conf - fixed command escaping - patch: Use SIG_SETMASK when resetting signal mask instead of SIG_UNBLOCK Resolves: rhbz#842759 Resolves: rhbz#844420 Resolves: rhbz#844419 Resolves: rhbz#844418 Resolves: rhbz#844443
Family: unix Class: patch
Reference(s): ELSA-2012-1149
CVE-2012-3440
 Version: 4
Platform(s): Oracle Linux 5
 Product(s): sudo
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Os 1

OpenVAS Exploits

Date Description
2012-08-09 Name : CentOS Update for sudo CESA-2012:1149 centos5
File : nvt/gb_CESA-2012_1149_sudo_centos5.nasl
2012-08-09 Name : RedHat Update for sudo RHSA-2012:1149-01
File : nvt/gb_RHSA-2012_1149-01_sudo.nasl

Information Assurance Vulnerability Management (IAVM)

Date Description
2013-06-06 IAVM : 2013-B-0064 - Multiple Vulnerabilities in VMware ESX 4.0
Severity : Category II - VMSKEY : V0038876

Nessus® Vulnerability Scanner

Date Description
2016-03-04 Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_esx_VMSA-2013-0007_remote.nasl - Type : ACT_GATHER_INFO
2014-11-08 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1185.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2012-1149.nasl - Type : ACT_GATHER_INFO
2013-05-31 Name : The remote VMware ESX host is missing a security-related patch.
File : vmware_VMSA-2013-0007.nasl - Type : ACT_GATHER_INFO
2012-08-09 Name : The remote Scientific Linux host is missing a security update.
File : sl_20120808_sudo_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-08 Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2012-1149.nasl - Type : ACT_GATHER_INFO
2012-08-08 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1149.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/54868
CONFIRM http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546....
https://bugzilla.redhat.com/show_bug.cgi?id=844442

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
Date Informations
2023-02-13 09:28:41
  • Multiple Updates
2023-02-02 21:28:42
  • Multiple Updates
2021-05-04 12:21:06
  • Multiple Updates
2021-04-22 01:25:13
  • Multiple Updates
2020-05-23 00:34:10
  • Multiple Updates
2016-11-29 00:24:47
  • Multiple Updates
2016-09-09 09:23:15
  • Multiple Updates
2016-04-26 22:04:45
  • Multiple Updates
2016-03-05 13:26:42
  • Multiple Updates
2014-11-08 13:30:15
  • Multiple Updates
2014-02-17 11:11:42
  • Multiple Updates
2013-11-11 12:40:01
  • Multiple Updates
2013-05-10 22:42:32
  • Multiple Updates