CVE-2011-4945 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.9 UNKNOWN	LOCAL	MEDIUM		AV:L/AC:M/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 11%

Affected Products (NVD)

Vendor	Product	Version
michael_biebl	policykit	0.103

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

policykit-1

bookworm	122-3 fixed
bullseye	0.105-31+deb11u1 fixed
bullseye (security)	0.105-31+deb11u1 fixed
sid	125-2 fixed
squeeze	not-affected
trixie	125-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

policykit

hardy	ignored
lucid	not-affected
maverick	dne
natty	dne
oneiric	dne

policykit-1

hardy	dne
lucid	not-affected
maverick	not-affected
natty	not-affected
oneiric	not-affected

Common Weakness Enumeration

CWE-264 -

References

http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9

http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patch

http://secunia.com/advisories/48817

http://security.gentoo.org/glsa/glsa-201204-06.xml

http://www.mail-archive.com/polkit-devel%40lists.freedesktop.org/msg00327.html

http://www.openwall.com/lists/oss-security/2012/03/28/1

http://www.openwall.com/lists/oss-security/2012/03/28/2

https://bugs.gentoo.org/show_bug.cgi?id=401513

https://launchpad.net/ubuntu/+source/policykit-1/0.103-1

http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9

http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patch

http://secunia.com/advisories/48817

http://security.gentoo.org/glsa/glsa-201204-06.xml

http://www.mail-archive.com/polkit-devel%40lists.freedesktop.org/msg00327.html

http://www.openwall.com/lists/oss-security/2012/03/28/1

http://www.openwall.com/lists/oss-security/2012/03/28/2

https://bugs.gentoo.org/show_bug.cgi?id=401513

https://launchpad.net/ubuntu/+source/policykit-1/0.103-1