Untrusted search path - CVE-2011-3640
Published: October 28, 2011 / Updated: August 4, 2020
Vulnerability identifier: #VU33693
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2011-3640
CWE-ID: CWE-426
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor:
Affected software:
Detailed vulnerability description
The vulnerability allows a remote #AU# to execute arbitrary code.
** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as used in Google Chrome before 17 on Windows and Mac OS X, might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directory. NOTE: the vendor's response was "Strange behavior, but we're not treating this as a security bug."
How to mitigate CVE-2011-3640
Install update from vendor's website.
Sources
- http://blog.acrossecurity.com/2011/10/google-chrome-pkcs11txt-file-planting.html
- http://code.google.com/p/chromium/issues/detail?id=97426
- http://securityreason.com/securityalert/8483
- https://bugzilla.mozilla.org/show_bug.cgi?id=641052
- https://hermes.opensuse.org/messages/13154861
- https://hermes.opensuse.org/messages/13155432
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13414