CVE-2011-0995
rubygem-sqlite3 < 1.2.4 - Privilege Escalation via Weak File Permissions
Title source: llmDescription
The sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
References (6)
Core 6
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/show_bug.cgi?id=685928
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/47694
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/67263
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/72180
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44418
Vendor Advisory x_refsource_confirm
http://support.novell.com/security/cve/CVE-2011-0995.html
Scores
EPSS
0.0004
EPSS Percentile
11.4%
Details
CWE
CWE-264
Status
published
Products (6)
novell/suse_linux_enterprise
11 sp1
rubyforge/rubygem-sqlite3
1.2.0
rubyforge/rubygem-sqlite3
1.2.1
rubyforge/rubygem-sqlite3
1.2.2
rubyforge/rubygem-sqlite3
< 1.2.3
rubygems/sqlite3-ruby
0 - 1.2.4RubyGems
Published
May 13, 2011
Tracked Since
Feb 18, 2026