Lucene search
HistoryOct 15, 2008 - 8:08 p.m.
CVE-2008-4580
cve
2008
4580
security vulnerability
symlink attack
fence_manual
cman
nvd
6.2 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gentoo:cman | gentoo cman | eq | 2.02.00 |
| gentoo:fence | gentoo fence | eq | 2.02.00 |
Related
prion
prion
Design/Logic Flaw
2008-10-15 20:08:00
ubuntucve
ubuntucve
CVE-2008-4580
2008-10-15 00:00:00
gentoo
gentoo
fence: Multiple symlink vulnerabilities
2010-09-29 00:00:00
nessus
nessus
openvas
openvas
Gentoo Security Advisory GLSA 201009-09 (fence)
2011-03-09 00:00:00
Gentoo Security Advisory GLSA 201009-09 (fence)
2011-03-09 00:00:00
Ubuntu: Security Advisory (USN-875-1)
2009-12-30 00:00:00
ubuntu
ubuntu
Red Hat Cluster Suite vulnerabilities
2009-12-18 00:00:00
6.2 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
Related for CVE-2008-4580