CVE-2008-6552

Опубликовано: 30 мар. 2009

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) before 2.03.09-1, gfs2-utils before 2.03.09-1, and CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:cluster_project:2.00.00:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.01.00:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.02.00:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.00:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.01:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.03:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.04:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.05:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.08:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.09:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.10:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.03.11:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.00:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.01:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.02:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.03:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.04:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.05:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.06:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.07:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.08:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.09:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.10:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.11:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.12:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cluster_project:2.99.13:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:redhat:cman:2.03.03-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cman:2.03.04-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cman:2.03.05-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cman:2.03.07-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:cman:2.03.08-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:rgmanager:2.03.03-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:rgmanager:2.03.04-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:rgmanager:2.03.05-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:rgmanager:2.03.07-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:rgmanager:2.03.08-1:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:redhat:gfs2-utils:2.03.03-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:gfs2-utils:2.03.04-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:gfs2-utils:2.03.05-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:gfs2-utils:2.03.07-1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:gfs2-utils:22.03.08-1:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00073

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-59

Связанные уязвимости

CVE-2008-6552

ubuntu

около 16 лет назад

CVE-2008-6552

redhat

больше 16 лет назад

CVE-2008-6552

debian

около 16 лет назад

Red Hat Cluster Project 2.x allows local users to modify or overwrite ...

GHSA-mmp4-x7mg-mw3w

github

около 3 лет назад

ELSA-2009-1339

oracle-oval

почти 16 лет назад

ELSA-2009-1339: rgmanager security, bug fix, and enhancement update (LOW)

EPSS

Процентиль: 23%

0.00073

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-59