Lucene search
MitreCVE-2008-2958HistoryJul 01, 2008 - 10:41 p.m.
CVE-2008-2958
2008-07-0122:41:00
CWE-362
mitre
web.nvd.nist.gov
23
cve-2008-2958
race condition
checkinstall
installwatch
symlink
security vulnerability
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
High
EPSS
0
Percentile
5.1%
Race condition in (1) checkinstall 1.6.1 and (2) installwatch allows local users to overwrite arbitrary files and have other impacts via symlink and possibly other attacks on temporary working directories.
Affected configurations
Node
checkinstallcheckinstallMatch1.6.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| checkinstall | checkinstall | 1.6.1 | cpe:2.3:a:checkinstall:checkinstall:1.6.1:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-2958
2008-07-01 22:41:00
debiancve
debiancve
CVE-2008-2958
2008-07-01 22:41:00
prion
prion
Race condition
2008-07-01 22:41:00
ubuntucve
ubuntucve
CVE-2008-2958
2008-07-01 00:00:00
cvelist
cvelist
CVE-2008-2958
2008-07-01 22:00:00
CVSS2
4.4
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2008-2958