ID CVE-2008-5367Type cveReporter cve@mitre.orgModified 2008-12-09T05:00:00
Description
ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the /tmp/resolv.conf.tmp temporary file.
{"id": "CVE-2008-5367", "bulletinFamily": "NVD", "title": "CVE-2008-5367", "description": "ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the /tmp/resolv.conf.tmp temporary file.", "published": "2008-12-08T23:30:00", "modified": "2008-12-09T05:00:00", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5367", "reporter": "cve@mitre.org", "references": ["http://lists.debian.org/debian-devel/2008/08/msg00283.html"], "cvelist": ["CVE-2008-5367"], "type": "cve", "lastseen": "2019-05-29T18:09:29", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "2febb62cf77006c9efe1aa6f2092b955"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "4cd1ac23d00c188c6c717b639b4e4b2c"}, {"key": "cpe23", "hash": "0c45d7c14121a871149e348fb3cc905d"}, {"key": "cvelist", "hash": "0a2efebf36649f957b890dac92693ec4"}, {"key": "cvss", "hash": "d5f1840e27443eb2d6a17b941080264e"}, {"key": "cvss2", "hash": "a557fbdf660140e37cd35160225900d3"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "c92f044c94e4360fec268c45081f3bc6"}, {"key": "description", "hash": "60cddaaf315db8934b6425758f56b1c0"}, {"key": "href", "hash": "c91d78fe0f80baf537ee9e6134117020"}, {"key": "modified", "hash": "f522561535f469f91b89c0239d6fdbc5"}, {"key": "published", "hash": "be99d27a71b88f4d38af64bd96c42a49"}, {"key": "references", "hash": "31eb0ee8ed69c947f4560d13f05ab5fd"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "125c9615af958326551bae5770cb106d"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "8a5175690a772b28aa2d70c78285a2ff7d79ebf2af1216d9b9d5c688b1f0d438", "viewCount": 0, "enchantments": {"score": {"value": 5.6, "vector": "NONE", "modified": "2019-05-29T18:09:29", "rev": 2}, "dependencies": {"references": [], "modified": "2019-05-29T18:09:29", "rev": 2}, "vulnersScore": 5.6}, "objectVersion": "1.3", "cpe": ["cpe:/a:marco_d'itri:ppp-udeb:2.4.4", "cpe:/a:marco_d\\'itri:ppp-udeb:2.4.4"], "affectedSoftware": [{"name": "marco_d'itri ppp-udeb", "operator": "eq", "version": "2.4.4"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:marco_d\\'itri:ppp-udeb:2.4.4:*:*:*:*:*:*:*"], "cwe": ["CWE-59"]}
{}
