[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-3919Date: (C)2007-10-28   (M)2023-12-22


(1) xenbaked and (2) xenmon.py in Xen 3.1 and earlier allow local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.0
Exploit Score: 2.7
Impact Score: 9.2
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality: NONE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1018859
BID-26190
SECUNIA-27389
SECUNIA-27408
SECUNIA-27486
SECUNIA-27497
SECUNIA-29963
OSVDB-41342
OSVDB-41343
ADV-2007-3621
DSA-1395
FEDORA-2007-2708
FEDORA-2007-737
MDKSA-2007:203
RHSA-2008:0194
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=447795
oval:org.mitre.oval:def:9913
xen-xenqshm-symlink(37403)

CWE    1
CWE-59

© SecPod Technologies