A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the ability of unprivileged users to execute any program as root.
References
Link | Resource |
---|---|
https://lwn.net/Articles/464824/ | Not Applicable Third Party Advisory |
https://bugs.launchpad.net/calibre/+bug/885027 | Exploit Issue Tracking Third Party Advisory |
https://www.openwall.com/lists/oss-security/2011/11/02/2 | Mailing List Third Party Advisory |
https://git.zx2c4.com/calibre-mount-helper-exploit/about/ | Exploit Third Party Advisory |
Configurations
Information
Published : 2021-10-26 18:15
Updated : 2021-11-01 08:47
NVD link : CVE-2011-4125
Mitre link : CVE-2011-4125
JSON object : View
CWE
CWE-426
Untrusted Search Path
Products Affected
calibre-ebook
- calibre