Unrated severityNVD Advisory· Published Feb 21, 2011· Updated Jun 16, 2026
CVE-2011-1056
CVE-2011-1056
Description
The installer for Metasploit Framework 3.5.1, when running on Windows, uses weak inherited permissions for the Metasploit installation directory, which allows local users to gain privileges by replacing critical files with a Trojan horse.
Affected products
2cpe:2.3:a:metasploit:metasploit_framework:3.5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:metasploit:metasploit_framework:3.5.1:*:*:*:*:*:*:*
- (no CPE)range: =3.5.1
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/43166nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0371nvdVendor Advisory
- blog.metasploit.com/2011/02/metasploit-framework-352-released.htmlnvd
- osvdb.org/70857nvd
News mentions
0No linked articles in our index yet.