[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247862

 
 

909

 
 

194603

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-1693Date: (C)2010-10-26   (M)2023-12-22


openibd in OpenFabrics Enterprise Distribution (OFED) 1.5.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ib_set_node_desc.sh temporary file.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.3
Exploit Score: 3.4
Impact Score: 9.2
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
-41937
-44332
-68856
http://lists.openfabrics.org/pipermail/ewg/2010-October/015886.html
http://www.openwall.com/lists/oss-security/2010/10/22/1
ofed-openibd-symlink(62753)

CPE    1
cpe:/a:openfabrics:enterprise_distribution:1.5.2
CWE    1
CWE-59

© SecPod Technologies