Lucene search
Ubuntu.comUB:CVE-2009-1295HistoryApr 30, 2009 - 12:00 a.m.
CVE-2009-1295
2009-04-3000:00:00
ubuntu.com
ubuntu.com
19
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
EPSS
0
Percentile
5.1%
Apport before 0.108.4 on Ubuntu 8.04 LTS, before 0.119.2 on Ubuntu 8.10,
and before 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files
from the application’s crash-report directory, which allows local users to
delete arbitrary files via unspecified vectors.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | bug mentions fuse being an attack vector, but it isn’t on Jaunty symlink/race condition |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-768-1)
2022-08-26 00:00:00
SuSE Security Summary SUSE-SR:2009:010
2009-05-20 00:00:00
SUSE: Security Summary (SUSE-SR:2009:010)
2009-05-20 00:00:00
cve
cve
CVE-2009-1295
2009-04-30 20:30:00
nessus
nessus
openSUSE Security Update : apport (apport-816)
2009-07-21 00:00:00
Ubuntu 8.04 LTS / 8.10 / 9.04 : Apport vulnerability (USN-768-1)
2009-04-30 00:00:00
cvelist
cvelist
CVE-2009-1295
2009-04-30 20:00:00
ubuntu
ubuntu
Apport vulnerability
2009-04-29 00:00:00
prion
prion
Design/Logic Flaw
2009-04-30 20:30:00
nvd
nvd
CVE-2009-1295
2009-04-30 20:30:00
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
EPSS
0
Percentile
5.1%
Related for UB:CVE-2009-1295