CVE-2011-1485

Race condition in the pkexec utility and polkitd daemon in PolicyKit (aka polkit) 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID.
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:policykit:0.96:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-05-31 20:55

Updated : 2024-02-28 11:41


NVD link : CVE-2011-1485

Mitre link : CVE-2011-1485

CVE.ORG link : CVE-2011-1485


JSON object : View

Products Affected

redhat

  • policykit
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')