[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247768

 
 

909

 
 

194555

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-6552Date: (C)2009-03-30   (M)2023-12-22


Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) before 2.03.09-1, gfs2-utils before 2.03.09-1, and CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.9
Exploit Score: 3.4
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
BID-32179
SECUNIA-32602
SECUNIA-32616
SECUNIA-36530
SECUNIA-36555
SECUNIA-43367
SECUNIA-43372
OSVDB-50299
OSVDB-50300
OSVDB-50301
ADV-2011-0416
ADV-2011-0417
FEDORA-2008-9458
RHSA-2009:1337
RHSA-2009:1339
RHSA-2009:1341
RHSA-2011:0264
RHSA-2011:0265
USN-875-1
clusterproject-unspecified-priv-escalation(46412)
oval:org.mitre.oval:def:11404

CPE    1
cpe:/o:fedoraproject:fedora:9
CWE    1
CWE-59
OVAL    9
oval:org.secpod.oval:def:201959
oval:org.secpod.oval:def:202086
oval:org.secpod.oval:def:202040
oval:org.secpod.oval:def:202004
...

© SecPod Technologies