CVE-2008-4192

Опубликовано: 24 авг. 2008

Источник: redhat

CVSS2: 1.2

Описание

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-377

https://bugzilla.redhat.com/show_bug.cgi?id=460476cman/fence: insecure temporary file usage in the egenera fence agent

1.2 Low

CVSS2

Связанные уязвимости

CVE-2008-4192

ubuntu

почти 17 лет назад

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

CVE-2008-4192

nvd

почти 17 лет назад

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

CVE-2008-4192

debian

почти 17 лет назад

The pserver_shutdown function in fence_egenera in cman 2.20080629 and ...

GHSA-hpx5-6mfx-fq22

github

больше 3 лет назад

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

1.2 Low

CVSS2