Lucene search

[email protected]CVE-2008-4953

HistoryNov 05, 2008 - 3:00 p.m.

CVE-2008-4953

2008-11-0515:00:00

CWE-59

[email protected]

web.nvd.nist.gov

cve-2008-4953

firehol

symlink attack

file overwrite

security vulnerability

nvd

6.5 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

firehol in firehol 1.256 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/.firehol-tmp-#####-- and (2) /tmp/firehol.conf temporary files. NOTE: the vendor disputes this vulnerability, stating that an attack "would require an attacker to create 1073741824*PID-RANGE symlinks.

CPENameOperatorVersion
firehol:fireholfireholeq1.256

CPE	Name	Operator	Version
firehol:firehol	firehol	eq	1.256

References

bugs.debian.org/496424

dev.gentoo.org/~rbu/security/debiantemp/firehol

www.openwall.com/lists/oss-security/2008/10/30/2

bugs.gentoo.org/show_bug.cgi?id=235770

6.5 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2008-4953

ubuntucve1 cvelist1 debiancve1 prion1