Lucene search
RootSSV:3406HistoryJun 12, 2008 - 12:00 a.m.
opensuse-updater符号链接本地信息泄漏漏洞
2008-06-1200:00:00
Root
www.seebug.org
10
0.0004 Low
EPSS
Percentile
5.1%
BUGTRAQ ID: 29608
CVE ID:CVE-2008-2389
CNCVE ID:CNCVE-20082389
opensuse-updater是一款类似apt-get的软件包更新实现。
opensuse-updater处理符号链接存在问题,本地攻击者可以利用漏洞获得敏感信息。
目前没有详细漏洞细节提供。
S.u.S.E. opensuse-updater 0
S.u.S.E. openSUSE 10.2
SUSE-SR:2008:012已经修正此漏洞:
<a href=“http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html” target=“_blank”>http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html</a>
Related
cve
cve
CVE-2008-2389
2008-06-06 22:32:00
prion
prion
Code injection
2008-06-06 22:32:00
nvd
nvd
CVE-2008-2389
2008-06-06 22:32:00
cvelist
cvelist
CVE-2008-2389
2008-06-06 22:00:00