Lucene search
Ubuntu.comUB:CVE-2007-4998HistoryJan 31, 2008 - 12:00 a.m.
CVE-2007-4998
2008-01-3100:00:00
ubuntu.com
ubuntu.com
10
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
cp, when running with an option to preserve symlinks on multiple OSes,
allows local, user-assisted attackers to overwrite arbitrary files via a
symlink attack using crafted directories containing multiple source files
that are copied to the same destination.
Notes
| Author | Note |
|---|---|
| jdstrand | Ubuntu coreutils should not be affected. This problem is many years old. busybox 1.6.1 and 1.9.0 known not to be affected |
Related
prion
prion
Design/Logic Flaw
2008-01-31 21:00:00
cvelist
cvelist
CVE-2007-4998
2008-01-31 20:00:00
cbl_mariner
cbl_mariner
CVE-2007-4998 affecting package kernel for versions less than 5.10.78.1-1
2022-04-26 19:58:10
CVE-2007-4998 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
debiancve
debiancve
CVE-2007-4998
2008-01-31 21:00:00
nvd
nvd
CVE-2007-4998
2008-01-31 21:00:00
cve
cve
CVE-2007-4998
2008-01-31 21:00:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Related for UB:CVE-2007-4998