Lucene search

[email protected]CVE-2013-0219

HistoryFeb 24, 2013 - 7:55 p.m.

CVE-2013-0219

2013-02-2419:55:01

CWE-264

[email protected]

web.nvd.nist.gov

sssd

security

symlink attack

cve-2013-0219

nvd

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON

System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user’s files.

Affected configurations

NVD

Node

fedoraprojectsssdRange≤1.9.3

fedoraprojectsssdMatch0.2.1

fedoraprojectsssdMatch0.3.0

fedoraprojectsssdMatch0.3.1

fedoraprojectsssdMatch0.3.2

fedoraprojectsssdMatch0.3.3

fedoraprojectsssdMatch0.4.0

fedoraprojectsssdMatch0.4.1

fedoraprojectsssdMatch0.5.0

fedoraprojectsssdMatch0.6.0

fedoraprojectsssdMatch0.6.1

fedoraprojectsssdMatch0.7.0

fedoraprojectsssdMatch0.7.1

fedoraprojectsssdMatch0.99.0

fedoraprojectsssdMatch0.99.1

fedoraprojectsssdMatch1.0.0

fedoraprojectsssdMatch1.0.1

fedoraprojectsssdMatch1.0.2

fedoraprojectsssdMatch1.0.3

fedoraprojectsssdMatch1.0.4

fedoraprojectsssdMatch1.0.5

fedoraprojectsssdMatch1.0.6

fedoraprojectsssdMatch1.0.99

fedoraprojectsssdMatch1.1.0

fedoraprojectsssdMatch1.1.1

fedoraprojectsssdMatch1.1.2

fedoraprojectsssdMatch1.1.91

fedoraprojectsssdMatch1.1.92

fedoraprojectsssdMatch1.2.0

fedoraprojectsssdMatch1.2.1

fedoraprojectsssdMatch1.2.2

fedoraprojectsssdMatch1.2.3

fedoraprojectsssdMatch1.2.4

fedoraprojectsssdMatch1.2.91

fedoraprojectsssdMatch1.3.0

fedoraprojectsssdMatch1.3.1

fedoraprojectsssdMatch1.4.0

fedoraprojectsssdMatch1.4.1

fedoraprojectsssdMatch1.5.0

fedoraprojectsssdMatch1.5.1

fedoraprojectsssdMatch1.5.2

fedoraprojectsssdMatch1.5.3

fedoraprojectsssdMatch1.5.4

fedoraprojectsssdMatch1.5.5

fedoraprojectsssdMatch1.5.6

fedoraprojectsssdMatch1.5.6.1

fedoraprojectsssdMatch1.5.7

fedoraprojectsssdMatch1.5.8

fedoraprojectsssdMatch1.5.9

fedoraprojectsssdMatch1.5.10

fedoraprojectsssdMatch1.5.11

fedoraprojectsssdMatch1.5.12

fedoraprojectsssdMatch1.5.13

fedoraprojectsssdMatch1.5.14

fedoraprojectsssdMatch1.5.15

fedoraprojectsssdMatch1.5.16

fedoraprojectsssdMatch1.5.17

fedoraprojectsssdMatch1.6.0

fedoraprojectsssdMatch1.6.1

fedoraprojectsssdMatch1.6.2

fedoraprojectsssdMatch1.6.3

fedoraprojectsssdMatch1.6.4

fedoraprojectsssdMatch1.7.0

fedoraprojectsssdMatch1.8.0

fedoraprojectsssdMatch1.8.0beta1

fedoraprojectsssdMatch1.8.0beta2

fedoraprojectsssdMatch1.8.0beta3

fedoraprojectsssdMatch1.8.1

fedoraprojectsssdMatch1.8.2

fedoraprojectsssdMatch1.8.3

fedoraprojectsssdMatch1.8.4

fedoraprojectsssdMatch1.8.5

fedoraprojectsssdMatch1.8.6

fedoraprojectsssdMatch1.9.0

fedoraprojectsssdMatch1.9.1

fedoraprojectsssdMatch1.9.2

Node

redhatenterprise_linuxMatch5

redhatenterprise_linuxMatch6.0

CPENameOperatorVersion
fedoraproject:sssdfedoraproject sssdle1.9.3
fedoraproject:sssdfedoraproject sssdeq0.2.1
fedoraproject:sssdfedoraproject sssdeq0.3.0
fedoraproject:sssdfedoraproject sssdeq0.3.1
fedoraproject:sssdfedoraproject sssdeq0.3.2
fedoraproject:sssdfedoraproject sssdeq0.3.3
fedoraproject:sssdfedoraproject sssdeq0.4.0
fedoraproject:sssdfedoraproject sssdeq0.4.1
fedoraproject:sssdfedoraproject sssdeq0.5.0
fedoraproject:sssdfedoraproject sssdeq0.6.0

CPE	Name	Operator	Version
fedoraproject:sssd	fedoraproject sssd	le	1.9.3
fedoraproject:sssd	fedoraproject sssd	eq	0.2.1
fedoraproject:sssd	fedoraproject sssd	eq	0.3.0
fedoraproject:sssd	fedoraproject sssd	eq	0.3.1
fedoraproject:sssd	fedoraproject sssd	eq	0.3.2
fedoraproject:sssd	fedoraproject sssd	eq	0.3.3
fedoraproject:sssd	fedoraproject sssd	eq	0.4.0
fedoraproject:sssd	fedoraproject sssd	eq	0.4.1
fedoraproject:sssd	fedoraproject sssd	eq	0.5.0
fedoraproject:sssd	fedoraproject sssd	eq	0.6.0