CVE-2012-3537

The Crowbar Ohai plugin (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) in the Deployer Barclamp in Crowbar, possibly 1.4 and earlier, allows local users to execute arbitrary shell commands via vectors related to "insecure handling of tmp files" and predictable file names.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/84955
http://secunia.com/advisories/50442	Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/08/27/5
http://www.openwall.com/lists/oss-security/2012/08/27/7
http://www.securityfocus.com/bid/55240
https://bugzilla.novell.com/show_bug.cgi?id=774967
https://exchange.xforce.ibmcloud.com/vulnerabilities/78041
https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8	Exploit Patch
https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87	Exploit Patch
https://github.com/dellcloudedge/barclamp-deployer/pull/57
http://osvdb.org/84955
http://secunia.com/advisories/50442	Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/08/27/5
http://www.openwall.com/lists/oss-security/2012/08/27/7
http://www.securityfocus.com/bid/55240
https://bugzilla.novell.com/show_bug.cgi?id=774967
https://exchange.xforce.ibmcloud.com/vulnerabilities/78041
https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8	Exploit Patch
https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87	Exploit Patch
https://github.com/dellcloudedge/barclamp-deployer/pull/57

Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:crowbar:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:41

Type	Values Removed	Values Added
References	~~() http://osvdb.org/84955 -~~	() http://osvdb.org/84955 -
References	~~() http://secunia.com/advisories/50442 - Vendor Advisory~~	() http://secunia.com/advisories/50442 - Vendor Advisory
References	~~() http://www.openwall.com/lists/oss-security/2012/08/27/5 -~~	() http://www.openwall.com/lists/oss-security/2012/08/27/5 -
References	~~() http://www.openwall.com/lists/oss-security/2012/08/27/7 -~~	() http://www.openwall.com/lists/oss-security/2012/08/27/7 -
References	~~() http://www.securityfocus.com/bid/55240 -~~	() http://www.securityfocus.com/bid/55240 -
References	~~() https://bugzilla.novell.com/show_bug.cgi?id=774967 -~~	() https://bugzilla.novell.com/show_bug.cgi?id=774967 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/78041 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/78041 -
References	~~() https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8 - Exploit, Patch~~	() https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8 - Exploit, Patch
References	~~() https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87 - Exploit, Patch~~	() https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87 - Exploit, Patch
References	~~() https://github.com/dellcloudedge/barclamp-deployer/pull/57 -~~	() https://github.com/dellcloudedge/barclamp-deployer/pull/57 -

Information

Published : 2012-09-05 23:55

Updated : 2025-04-11 00:51

NVD link : CVE-2012-3537

Mitre link : CVE-2012-3537

CVE.ORG link : CVE-2012-3537

JSON object : View

Products Affected

dell

crowbar

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2012-3537", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-09-05T23:55:02.380", "references": [{"url": "http://osvdb.org/84955", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/50442", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/08/27/5", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/08/27/7", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/55240", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.novell.com/show_bug.cgi?id=774967", "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78041", "source": "secalert@redhat.com"}, {"url": "https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8", "tags": ["Exploit", "Patch"], "source": "secalert@redhat.com"}, {"url": "https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87", "tags": ["Exploit", "Patch"], "source": "secalert@redhat.com"}, {"url": "https://github.com/dellcloudedge/barclamp-deployer/pull/57", "source": "secalert@redhat.com"}, {"url": "http://osvdb.org/84955", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/50442", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.openwall.com/lists/oss-security/2012/08/27/5", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.openwall.com/lists/oss-security/2012/08/27/7", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/55240", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.novell.com/show_bug.cgi?id=774967", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78041", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8", "tags": ["Exploit", "Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87", "tags": ["Exploit", "Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/dellcloudedge/barclamp-deployer/pull/57", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The Crowbar Ohai plugin (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) in the Deployer Barclamp in Crowbar, possibly 1.4 and earlier, allows local users to execute arbitrary shell commands via vectors related to \"insecure handling of tmp files\" and predictable file names."}, {"lang": "es", "value": "El plugin Crowbar Ohai (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) en el Deployer Barclamp en Crowbar, posiblemente v1.4 y anteriores, permite a usuarios locales ejecutar una shell mediante vectores relacionados con una manipulaci\u00f3n insegura de ficheros temporales y nombres de fichero predecibles."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dell:crowbar:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F77F4F9-5FE2-4591-AEFD-796A747E5529", "versionEndIncluding": "1.4"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

4.6 /10