What is CVE-2012-0871?

CVE-2012-0871 is a vulnerability in Systemd_project Systemd, classified under Improper Link Resolution Before File Access. Published 2014-04-18.

Is CVE-2012-0871 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Systemd_project Systemd

CVE-2012-0871

The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.

EPSS: 0.001 (30.9th percentile) — read the EPSS interpretation.

Affected products

Systemd_project Systemd — versions 1, 2, 3
Opensuse — versions 12.1
N/a — versions n/a

Weakness classification (CWE)

CWE-59 — Improper Link Resolution Before File Access

Public proof-of-concept exploits

References

SUSE-SA:2012:001 (vendor-advisory, x_refsource_SUSE)
secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_CONFIRM)
79768 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2012-0871?: CVE-2012-0871 is a vulnerability in Systemd_project Systemd, classified under Improper Link Resolution Before File Access. Published 2014-04-18.
Is CVE-2012-0871 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.