CVE-2011-2504

Published: Mar 8, 2013Modified: Apr 29, 2026

6.9

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 3.4 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in x11perfcomp in XFree86 x11perf before 1.5.4 allows local users to gain privileges via unspecified Trojan horse code in the current working directory.

Affected (4)

Products: Xfree86: X11perf

Xfree86

1 product

X11perf

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Xfree86 X11perf	Up to 1.5.3
Xfree86 X11perf	Version 1.5.1
Xfree86 X11perf	Version 1.5.2
Xfree86 X11perf	Version 1.5

References (10)

http://lists.freedesktop.org/archives/xorg-announce/2011-July/001715.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2013-0502.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/58082

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=717672

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/82241

Source: secalert@redhat.com

http://lists.freedesktop.org/archives/xorg-announce/2011-July/001715.html