Lucene search
Ubuntu.comUB:CVE-2008-1078HistoryFeb 29, 2008 - 12:00 a.m.
CVE-2008-1078
2008-02-2900:00:00
ubuntu.com
ubuntu.com
7
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other
distributions, allows local users to overwrite arbitrary files via a
symlink attack on the expn[PID] temporary file. NOTE: this is the same
issue as CVE-2003-0308.1.
Related
cvelist
cvelist
CVE-2008-1078
2008-02-29 02:00:00
CVE-2003-0308
2003-05-17 04:00:00
cve
cve
CVE-2008-1078
2008-02-29 02:44:00
CVE-2003-0308
2003-05-15 04:00:00
prion
prion
Code injection
2008-02-29 02:44:00
osv
osv
sendmail - insecure temporary files
2003-05-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 305-1 (sendmail)
2008-01-17 00:00:00
Debian Security Advisory DSA 305-1 (sendmail)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200804-09 (am-utils)
2008-09-24 00:00:00
nessus
nessus
Debian DSA-305-1 : sendmail - insecure temporary files
2004-09-29 00:00:00
GLSA-200804-09 : am-utils: Insecure temporary file creation
2008-04-17 00:00:00
Fedora 9 : am-utils-6.1.5-8.1.fc9 (2008-10755)
2009-01-16 00:00:00
debiancve
debiancve
CVE-2003-0308
2003-05-15 04:00:00
securityvulns
securityvulns
am-utils symbolic links security vulnerability
2008-04-14 00:00:00
[ GLSA 200804-09 ] am-utils: Insecure temporary file creation
2008-04-14 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: am-utils-6.1.5-8.1.fc9
2009-01-07 09:33:56
gentoo
gentoo
am-utils: Insecure temporary file creation
2008-04-10 00:00:00
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
Related for UB:CVE-2008-1078