What is the severity of CVE-2011-0532?

CVE-2011-0532 is considered a moderate severity vulnerability due to its impact on the security of the Red Hat Directory Server.

How do I fix CVE-2011-0532?

To fix CVE-2011-0532, you should update the Red Hat Directory Server to the latest version that addresses this vulnerability.

What causes CVE-2011-0532?

CVE-2011-0532 is caused by the LD_LIBRARY_PATH environment variable being set to an insecure value in several shell scripts of the Red Hat Directory Server.

Which versions of Red Hat 389 Directory Server are affected by CVE-2011-0532?

CVE-2011-0532 affects the Red Hat 389 Directory Server versions 1.2.1 to 1.2.8 and 8.2.3.

Is CVE-2011-0532 exploitable remotely?

CVE-2011-0532 may be exploitable remotely depending on the configuration of the Red Hat Directory Server.

Vulnerability/
CVE-2011-0532

medium

6.2

CWE

264

25/1/2011

23/2/2011

6/8/2024

CVE-2011-0532

First published: Tue Jan 25 2011(Updated: )

It was discovered that 398 / Red Hat Directory Server set LD_LIBRARY_PATH environment variable to insecure value containing empty path elements in various shell scripts used by DS (e.g. various backup/restore scripts instantiated for each DS instance, as well as the main initialization script). Such LD_LIBRARY_PATH setting causes ld.so dynamic linker to perform library search relative to the current working directory before searching system library directories. A local attacker able to trick a user running those scripts (usually the root user) to run them while working from an attacker writeable directory could use this flaw to escalate their privileges via specially crated dynamic library.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Red Hat 389 Directory Server	=1.2.1
Red Hat 389 Directory Server	=1.2.2
Red Hat 389 Directory Server	=1.2.3
Red Hat 389 Directory Server	=1.2.5
Red Hat 389 Directory Server	=1.2.5-rc1
Red Hat 389 Directory Server	=1.2.5-rc2
Red Hat 389 Directory Server	=1.2.5-rc3
Red Hat 389 Directory Server	=1.2.5-rc4
Red Hat 389 Directory Server	=1.2.6
Red Hat 389 Directory Server	=1.2.6-a2
Red Hat 389 Directory Server	=1.2.6-a3
Red Hat 389 Directory Server	=1.2.6-a4
Red Hat 389 Directory Server	=1.2.6-rc1
Red Hat 389 Directory Server	=1.2.6-rc2
Red Hat 389 Directory Server	=1.2.6-rc3
Red Hat 389 Directory Server	=1.2.6-rc6
Red Hat 389 Directory Server	=1.2.6-rc7
Red Hat 389 Directory Server	=1.2.6.1
Red Hat 389 Directory Server	=1.2.7-alpha3
Red Hat 389 Directory Server	=1.2.7.5
Red Hat 389 Directory Server	=1.2.8-alpha1
Red Hat 389 Directory Server	=1.2.8-alpha2
Red Hat Directory Server	=8.2
Red Hat Directory Server	=8.2.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0532?
CVE-2011-0532 is considered a moderate severity vulnerability due to its impact on the security of the Red Hat Directory Server.
How do I fix CVE-2011-0532?
To fix CVE-2011-0532, you should update the Red Hat Directory Server to the latest version that addresses this vulnerability.
What causes CVE-2011-0532?
CVE-2011-0532 is caused by the LD_LIBRARY_PATH environment variable being set to an insecure value in several shell scripts of the Red Hat Directory Server.
Which versions of Red Hat 389 Directory Server are affected by CVE-2011-0532?
CVE-2011-0532 affects the Red Hat 389 Directory Server versions 1.2.1 to 1.2.8 and 8.2.3.
Is CVE-2011-0532 exploitable remotely?
CVE-2011-0532 may be exploitable remotely depending on the configuration of the Red Hat Directory Server.

agent/first-publish-date
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/last-modified-date
agent/references
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2011-0532
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/fedoraproject
canonical/red hat 389 directory server
version/red hat 389 directory server/1.2.1
version/red hat 389 directory server/1.2.2
version/red hat 389 directory server/1.2.3
version/red hat 389 directory server/1.2.5
version/red hat 389 directory server/1.2.5-rc1
version/red hat 389 directory server/1.2.5-rc2
version/red hat 389 directory server/1.2.5-rc3
version/red hat 389 directory server/1.2.5-rc4
version/red hat 389 directory server/1.2.6
version/red hat 389 directory server/1.2.6-a2
version/red hat 389 directory server/1.2.6-a3
version/red hat 389 directory server/1.2.6-a4
version/red hat 389 directory server/1.2.6-rc1
version/red hat 389 directory server/1.2.6-rc2
version/red hat 389 directory server/1.2.6-rc3
version/red hat 389 directory server/1.2.6-rc6
version/red hat 389 directory server/1.2.6-rc7
version/red hat 389 directory server/1.2.6.1
version/red hat 389 directory server/1.2.7-alpha3
version/red hat 389 directory server/1.2.7.5
version/red hat 389 directory server/1.2.8-alpha1
version/red hat 389 directory server/1.2.8-alpha2
vendor/redhat
canonical/red hat directory server
version/red hat directory server/8.2
version/red hat directory server/8.2.3