Lucene search
Ubuntu.comUB:CVE-2008-5256HistoryNov 27, 2008 - 12:00 a.m.
CVE-2008-5256
2008-11-2700:00:00
ubuntu.com
ubuntu.com
6
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox
before 2.0.6 allows local users to overwrite arbitrary files via a symlink
attack on a /tmp/.vbox-$USER-ipc/lock temporary file.
Related
prion
prion
Design/Logic Flaw
2008-11-27 00:30:00
openvas
openvas
Sun xVM VirtualBox Insecure Temporary Files Vulnerability (Linux)
2008-12-10 00:00:00
Sun xVM VirtualBox Insecure Temporary Files Vulnerability - Linux
2008-12-10 00:00:00
Mandrake Security Advisory MDVSA-2009:011 (virtualbox)
2009-01-20 00:00:00
nessus
nessus
openSUSE 10 Security Update : virtualbox (virtualbox-5990)
2009-02-13 00:00:00
openSUSE Security Update : virtualbox (virtualbox-513)
2009-07-21 00:00:00
Mandriva Linux Security Advisory : virtualbox (MDVSA-2009:011)
2009-04-23 00:00:00
securityvulns
securityvulns
VirtualBox symbolic links vulnerability
2009-01-18 00:00:00
[ MDVSA-2009:011 ] virtualbox
2009-01-18 00:00:00
seebug
seebug
VirtualBox ipcdUnix.cpp创建不安全临时文件漏洞
2008-11-30 00:00:00
cve
cve
CVE-2008-5256
2008-11-27 00:30:00
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
Related for UB:CVE-2008-5256