fkie_cve-2013-6441
Vulnerability from fkie_nvd
Published
2014-02-14 15:55
Modified
2025-04-11 00:51
Severity ?
Summary
The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linuxcontainers | lxc | * | |
| linuxcontainers | lxc | 0.1.0 | |
| linuxcontainers | lxc | 0.2.0 | |
| linuxcontainers | lxc | 0.2.1 | |
| linuxcontainers | lxc | 0.3.0 | |
| linuxcontainers | lxc | 0.4.0 | |
| linuxcontainers | lxc | 0.5.0 | |
| linuxcontainers | lxc | 0.5.1 | |
| linuxcontainers | lxc | 0.5.2 | |
| linuxcontainers | lxc | 0.6.0 | |
| linuxcontainers | lxc | 0.6.1 | |
| linuxcontainers | lxc | 0.6.2 | |
| linuxcontainers | lxc | 0.6.3 | |
| linuxcontainers | lxc | 0.6.4 | |
| linuxcontainers | lxc | 0.6.5 | |
| linuxcontainers | lxc | 0.7.0 | |
| linuxcontainers | lxc | 0.7.1 | |
| linuxcontainers | lxc | 0.7.2 | |
| linuxcontainers | lxc | 0.7.3 | |
| linuxcontainers | lxc | 0.7.4 | |
| linuxcontainers | lxc | 0.7.4.1 | |
| linuxcontainers | lxc | 0.7.4.2 | |
| linuxcontainers | lxc | 0.7.5 | |
| linuxcontainers | lxc | 0.8.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "ADAA3CD5-2DF7-4FA5-8DE8-5C376D34988D",
"versionEndIncluding": "0.9.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5DA7C45E-2A61-42D6-82D3-7F5ED2581770",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B089CD7B-9352-44DB-ACB3-6C5323FDE196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "131DBF9F-7E49-46C7-B424-F8DFC9A30EA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E595E900-DB88-48D8-B6CB-21113FE3CC69",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "605B4EE9-57FA-4179-B430-7498148AC9C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "228613D9-EFEB-43E2-BDBC-8D36A2993ED9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5C47C5D5-05B5-4503-A8A3-AB26C44566FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "77360E54-2092-4CA8-901D-EA9D70303BF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EEC62987-7602-44F3-B623-A39BD02D9234",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0D5F42E8-B943-4F63-B1F9-525E96B7D880",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "864B9E0E-1D85-4120-8B58-D4298F0AA9D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "291971FE-7096-43E7-882A-AD01D14B8C45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "0164D9DA-0327-4644-B455-A92311C6AE5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "7DDEF7D0-A1E9-414B-A689-240C5DE683D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "29978BE7-7E5B-4FF5-B35E-F7F0FD9E15B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "23130573-5884-4DC3-9F12-336B9D6807B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7D4D3880-C419-4741-ACBB-AC087A3A4BAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "389CE800-E958-4240-BDD6-56AB4A7A3859",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "A6090283-B39F-4D8C-9756-5248A344509B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E860AF3D-019C-4533-AF38-8251C34F6EC5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A7760469-C409-473F-BD0E-6D52460324F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "887CC2E2-8736-4B12-991C-0C7576ED00CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxcontainers:lxc:0.8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B5840AA1-C17A-4FCE-9299-648D002247C0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file."
},
{
"lang": "es",
"value": "La plantilla lxc-sshd (templates/lxc-sshd.in) en LXC anterior a 1.0.0.beta2 utiliza permisos de lectura-escritura cuando monta /sbin/init, lo que permite a usuarios locales ganar privilegios mediante la modificaci\u00f3n del archivo init."
}
],
"id": "CVE-2013-6441",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-02-14T15:55:05.237",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://www.ubuntu.com/usn/USN-2104-1"
},
{
"source": "secalert@redhat.com",
"url": "https://bugs.launchpad.net/ubuntu/%2Bsource/lxc/%2Bbug/1261045"
},
{
"source": "secalert@redhat.com",
"url": "https://github.com/dotcloud/lxc/pull/1"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
],
"url": "https://github.com/lxc/lxc/commit/f4d5cc8e1f39d132b61e110674528cac727ae0e2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2104-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugs.launchpad.net/ubuntu/%2Bsource/lxc/%2Bbug/1261045"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/dotcloud/lxc/pull/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Patch"
],
"url": "https://github.com/lxc/lxc/commit/f4d5cc8e1f39d132b61e110674528cac727ae0e2"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…