Unrated severityNVD Advisory· Published Sep 6, 2011· Updated Apr 29, 2026

CVE-2011-2660

Description

The modify_resolvconf_suse script in the vpnc package before 0.5.1-55.10.1 in SUSE Linux Enterprise Desktop 11 SP1 might allow remote attackers to execute arbitrary commands via a crafted DNS domain name.

Affected products

SUSE S.A./Vpnc2 versions
cpe:2.3:a:suse:vpnc:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:suse:vpnc:*:*:*:*:*:*:*:*range: <=0.5.1
- (no CPE)range: <0.5.1-55.10.1
SUSE S.A./Linux Enterprise Desktop
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.opensuse.org/opensuse-security-announce/2011-08/msg00028.htmlnvd
lists.opensuse.org/opensuse-security-announce/2011-08/msg00029.htmlnvd
www.securityfocus.com/bid/49391nvd
bugzilla.novell.com/651577nvd
bugzilla.novell.com/708656nvd
exchange.xforce.ibmcloud.com/vulnerabilities/69514nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000