CVE Vulnerabilities

CVE-2012-5659

Published: Mar 12, 2013 | Modified: Mar 19, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.7 LOW
AV:L/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to load and execute arbitrary Python modules by modifying the PYTHONPATH environment variable to reference a malicious Python module.

Affected Software

Name Vendor Start Version End Version
Automatic_bug_reporting_tool Redhat 2.0.6 2.0.6
Automatic_bug_reporting_tool Redhat 2.0.4.981 2.0.4.981
Automatic_bug_reporting_tool Redhat 2.0.8 2.0.8
Automatic_bug_reporting_tool Redhat * 2.0.9
Automatic_bug_reporting_tool Redhat 2.0.5 2.0.5
Automatic_bug_reporting_tool Redhat 2.0.2 2.0.2
Automatic_bug_reporting_tool Redhat 2.0.7 2.0.7
Automatic_bug_reporting_tool Redhat 2.0.4.980 2.0.4.980
Automatic_bug_reporting_tool Redhat 2.0.1 2.0.1
Automatic_bug_reporting_tool Redhat 2.0.0 2.0.0
Automatic_bug_reporting_tool Redhat 2.0.4 2.0.4
Automatic_bug_reporting_tool Redhat 2.0.3 2.0.3

References