Lucene search

K
cveMitreCVE-2008-4980
HistoryNov 06, 2008 - 3:55 p.m.

CVE-2008-4980

2008-11-0615:55:52
CWE-59
mitre
web.nvd.nist.gov
24
cve
2008
4980
rccp
symlink attack
file overwrite
local users
nvd

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

High

EPSS

0

Percentile

5.1%

delqueueask in rccp 0.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cccp_tmp.txt temporary file.

Affected configurations

Nvd
Node
zak_b_eleprccpMatch0.9
VendorProductVersionCPE
zak_b_eleprccp0.9cpe:2.3:a:zak_b_elep:rccp:0.9:*:*:*:*:*:*:*

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

High

EPSS

0

Percentile

5.1%

Related for CVE-2008-4980