Lucene search
HistoryMar 20, 2008 - 12:44 a.m.
CVE-2008-0889
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
5.1%
Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which allows local users to execute arbitrary code by modifying the script.
Affected configurations
Node
redhatenterprise_linux
redhatdirectory_serverMatch8.0el4
ORredhatdirectory_serverMatch8.0el5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | * | cpe:2.3:o:redhat:enterprise_linux:*:*:*:*:*:*:*:* |
| redhat | directory_server | 8.0 | cpe:2.3:a:redhat:directory_server:8.0:el4:*:*:*:*:*:* |
| redhat | directory_server | 8.0 | cpe:2.3:a:redhat:directory_server:8.0:el5:*:*:*:*:*:* |
Related
redhat
redhat
(RHSA-2008:0191) Important: redhat-idm-console security update
2008-03-19 00:00:00
cve
cve
CVE-2008-0889
2008-03-20 00:44:00
cvelist
cvelist
CVE-2008-0889
2008-03-20 00:00:00
prion
prion
Code injection
2008-03-20 00:44:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:22:08
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2008-0889