Novell is now a part of Micro Focus

My Favorites

Close

Please to see your favorites.

Local privilege escalation via insecure file permissions (CVE-2016-1611)

This document (7017689) is provided subject to the disclaimer at the end of this document.

Environment

Novell Filr 2.0
Novell Filr 1.2

Situation

A privilege escalation vulnerability was found in Filr 1.2/2.0 that may allow a local attacker to elevate privileges to root via an unspecified file with insecure file permissions.

Resolution

A fix for this issue is available in the Filr 2.0 Hot Patch 2 and Filr 1.2 Hot Patch 6, available via the Novell Patch Finder.

Additional Information

See also: TID 7017791

CVE-2016-1611.
Special thanks to Wolfgang Ettlinger working with SEC Consult Vulnerability Lab for reporting this vulnerability to Micro Focus.

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7017689
  • Creation Date:09-JUN-16
  • Modified Date:30-JUN-16
    • NovellFilr

Did this document solve your problem? Provide Feedback