The sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
CVSS 2.0
Severity: LOW
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| rubyforge | rubygem-sqlite3 | 1.2.0 |
| rubyforge | rubygem-sqlite3 | 1.2.1 |
| rubyforge | rubygem-sqlite3 | * |
| novell | suse_linux_enterprise | 11 |
| rubyforge | rubygem-sqlite3 | 1.2.2 |