Lucene search
HistoryJan 31, 2008 - 9:00 p.m.
CVE-2007-4998
cp
symlink attack
overwrite
cve-2007-4998
nvd
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same destination.
Affected configurations
Node
linuxlinux_kernel
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux:linux_kernel | linux linux kernel | eq | * |
Related
prion
prion
Design/Logic Flaw
2008-01-31 21:00:00
cvelist
cvelist
CVE-2007-4998
2008-01-31 20:00:00
ubuntucve
ubuntucve
CVE-2007-4998
2008-01-31 00:00:00
cbl_mariner
cbl_mariner
CVE-2007-4998 affecting package kernel for versions less than 5.10.78.1-1
2022-04-26 19:58:10
CVE-2007-4998 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
debiancve
debiancve
CVE-2007-4998
2008-01-31 21:00:00
nvd
nvd
CVE-2007-4998
2008-01-31 21:00:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2007-4998