CVE-2011-4945
published 2012-10-01CVE-2011-4945: PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
PriorityP425medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.35%
27.0th percentile
PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | policykit-1 | < policykit-1 0.103-1 (bookworm) | policykit-1 0.103-1 (bookworm) |
| michael_biebl | policykit | — | — |
CVSS provenance
nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9MEDIUM
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
polkit: Members of 'wheel' group allowed to become root without providing a password
vendor_redhat·2011-12-09·CVSS 6.9
CVE-2011-4945 [MEDIUM] polkit: Members of 'wheel' group allowed to become root without providing a password
polkit: Members of 'wheel' group allowed to become root without providing a password
PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
Statement: Not vulnerable. This issue did not affect the version of polkit as shipped with Red Hat Enterprise Linux 6 as it did not include the upstream commit 763faf434b445c20ae9529100d3ef5290976d0c9 that introduced this issue.
Package: polkit (Red Hat Enterprise Linux 6) - Not affected
Debian
CVE-2011-4945: policykit-1 - PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows loc...
vendor_debian·2011·CVSS 6.9
CVE-2011-4945 [MEDIUM] CVE-2011-4945: policykit-1 - PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows loc...
PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
Scope: local
bookworm: resolved (fixed in 0.103-1)
bullseye: resolved (fixed in 0.103-1)
forky: resolved (fixed in 0.103-1)
sid: resolved (fixed in 0.103-1)
trixie: resolved (fixed in 0.103-1)
GHSA
GHSA-7wrh-wgmh-6x48: PolicyKit 0
ghsa_unreviewed·2022-05-17
CVE-2011-4945 [MEDIUM] GHSA-7wrh-wgmh-6x48: PolicyKit 0
PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
OSV
CVE-2011-4945: PolicyKit 0
osv·2012-10-01·CVSS 6.9
CVE-2011-4945 [MEDIUM] CVE-2011-4945: PolicyKit 0
PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which allows local users in the wheel group to gain root privileges without authentication.
No detection rules found.
No public exploits indexed.
http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patchhttp://secunia.com/advisories/48817http://security.gentoo.org/glsa/glsa-201204-06.xmlhttp://www.mail-archive.com/polkit-devel%40lists.freedesktop.org/msg00327.htmlhttp://www.openwall.com/lists/oss-security/2012/03/28/1http://www.openwall.com/lists/oss-security/2012/03/28/2https://bugs.gentoo.org/show_bug.cgi?id=401513https://launchpad.net/ubuntu/+source/policykit-1/0.103-1http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patchhttp://secunia.com/advisories/48817http://security.gentoo.org/glsa/glsa-201204-06.xmlhttp://www.mail-archive.com/polkit-devel%40lists.freedesktop.org/msg00327.htmlhttp://www.openwall.com/lists/oss-security/2012/03/28/1http://www.openwall.com/lists/oss-security/2012/03/28/2https://bugs.gentoo.org/show_bug.cgi?id=401513https://launchpad.net/ubuntu/+source/policykit-1/0.103-1
2012-10-01
Published