NVD

Id
43906  
Name
CVE-2012-2053  
Description
The sudoers file in the Linux system configuration in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 does not require a password for executing commands as root, which allows local users to gain privileges via the sudo program, as demonstrated by the user account that executes PHP scripts, a different vulnerability than CVE-2012-1777.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-04-05  
Modified Date
2012-04-05  
Seq
2012-2053  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
220513 43906 CVE-2012-2053 https://www.sec-consult.com/files/20120328-0_F5_FirePass_SSL_VPN_unauthenticated_remote_root_v1.0.txt  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
26288 JVNDB-2012-001995 F5 FirePass の sudoers ファイルにおける権限を取得される脆弱性 F5 FirePass の Linux システム設定の sudoers ファイルは、ルート権限でのコマンド実行にパスワードを要求しないため、権限を取得される脆弱性が存在します。 CVE-2012-2053 55291 CVE-2012-2053 43906 7.2 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001995.html 2012-04-05 2012-04-06 View