Lucene search
MitreCVE-2008-5150HistoryNov 18, 2008 - 4:00 p.m.
CVE-2008-5150
2008-11-1816:00:01
CWE-59
mitre
web.nvd.nist.gov
27
cve-2008-5150
sample.sh
maildirsync 1.1
symlink attack
temporary file
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0
Percentile
5.1%
sample.sh in maildirsync 1.1 allows local users to append data to arbitrary files via a symlink attack on a /tmp/maildirsync-*.#####.log temporary file.
Affected configurations
Node
jose_carlos_medeirosmaildirsyncMatch1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jose_carlos_medeiros | maildirsync | 1.1 | cpe:2.3:a:jose_carlos_medeiros:maildirsync:1.1:*:*:*:*:*:*:* |
Related
prion
prion
Arbitrary file deletion
2008-11-18 16:00:00
nvd
nvd
CVE-2008-5150
2008-11-18 16:00:01
cvelist
cvelist
CVE-2008-5150
2008-11-18 15:00:00
ubuntucve
ubuntucve
CVE-2008-5150
2008-11-18 00:00:00
debiancve
debiancve
CVE-2008-5150
2008-11-18 16:00:01
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2008-5150