GHSA-r59x-25ph-xp4q

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

ltp-network-test 20060918 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/vsftpd.conf, (b) /tmp/udp/2/, (c) /tmp/tcp/2/, (d) /tmp/udp/3/, (e) /tmp/tcp/3/, (f) /tmp/nfs_fsstress.udp.2.log, (g) /tmp/nfs_fsstress.udp.3.log, (h) /tmp/nfs_fsstress.tcp.2.log, (i) /tmp/nfs_fsstress.tcp.3.log, and (j) /tmp/nfs_fsstress.sardata temporary files, related to the (1) ftp_setup_vsftp_conf and (2) nfs_fsstress.sh scripts.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

CVE ID

CVE-2008-4969

Дефекты

CWE-59

Связанные уязвимости

CVE-2008-4969

ubuntu

больше 17 лет назад

ltp-network-test 20060918 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/vsftpd.conf, (b) /tmp/udp/2/*, (c) /tmp/tcp/2/*, (d) /tmp/udp/3/*, (e) /tmp/tcp/3/*, (f) /tmp/nfs_fsstress.udp.2.log, (g) /tmp/nfs_fsstress.udp.3.log, (h) /tmp/nfs_fsstress.tcp.2.log, (i) /tmp/nfs_fsstress.tcp.3.log, and (j) /tmp/nfs_fsstress.sardata temporary files, related to the (1) ftp_setup_vsftp_conf and (2) nfs_fsstress.sh scripts.

CVE-2008-4969

nvd

больше 17 лет назад

CVE-2008-4969

debian

больше 17 лет назад

ltp-network-test 20060918 allows local users to overwrite arbitrary fi ...

EPSS

Процентиль: 6%

0.00025

Низкий

CVE ID

CVE-2008-4969

Дефекты

CWE-59