CVE-2007-6206

Issue with core dump owner

Severity Score

2.1

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.

La función do_coredump en el archivo fs/exec.c en el kernel de Linux versiones 2.4.x y versiones 2.6.x hasta 2.6.24-rc3, y posiblemente otras versiones, no cambia el UID de un archivo de volcado de núcleo si éste existe antes de una creación de proceso root en un volcado de núcleo en la misma ubicación, lo que podría permitir a los usuarios locales obtener información confidencial.

*Credits: N/A

CVSS Scores

NISTv2 2.1

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-12-03 CVE Reserved
2007-12-04 CVE Published
2023-03-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CAPEC

References (41)

URL	Tag	Source
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=c46f739dd39db3b07ab5deb4e3ec81e1c04a91af	X_refsource_confirm
http://lists.vmware.com/pipermail/security-announce/2008/000023.html	Mailing List
http://secunia.com/advisories/27908	Third Party Advisory
http://secunia.com/advisories/28141	Third Party Advisory
http://secunia.com/advisories/28643	Third Party Advisory
http://secunia.com/advisories/28706	Third Party Advisory
http://secunia.com/advisories/28748	Third Party Advisory
http://secunia.com/advisories/28826	Third Party Advisory
http://secunia.com/advisories/28889	Third Party Advisory
http://secunia.com/advisories/28971	Third Party Advisory
http://secunia.com/advisories/29058	Third Party Advisory
http://secunia.com/advisories/30110	Third Party Advisory
http://secunia.com/advisories/30818	Third Party Advisory
http://secunia.com/advisories/30962	Third Party Advisory
http://secunia.com/advisories/31246	Third Party Advisory
http://secunia.com/advisories/33280	Third Party Advisory
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0048	Broken Link
http://www.securityfocus.com/archive/1/487808/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/26701	Third Party Advisory
http://www.vupen.com/english/advisories/2007/4090	Third Party Advisory
http://www.vupen.com/english/advisories/2008/2222/references	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/38841	Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10719	Signature

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://bugzilla.kernel.org/show_bug.cgi?id=3043	2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html	2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html	2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2008-0055.html	2023-11-07
http://www.debian.org/security/2007/dsa-1436	2023-11-07
http://www.debian.org/security/2008/dsa-1503	2023-11-07
http://www.debian.org/security/2008/dsa-1504	2023-11-07
http://www.mandriva.com/security/advisories?name=MDVSA-2008:044	2023-11-07
http://www.mandriva.com/security/advisories?name=MDVSA-2008:086	2023-11-07
http://www.mandriva.com/security/advisories?name=MDVSA-2008:112	2023-11-07
http://www.redhat.com/support/errata/RHSA-2008-0089.html	2023-11-07
http://www.redhat.com/support/errata/RHSA-2008-0211.html	2023-11-07
http://www.redhat.com/support/errata/RHSA-2008-0787.html	2023-11-07
http://www.ubuntu.com/usn/usn-574-1	2023-11-07
http://www.ubuntu.com/usn/usn-578-1	2023-11-07
https://access.redhat.com/security/cve/CVE-2007-6206	2009-01-08
https://bugzilla.redhat.com/show_bug.cgi?id=396861	2009-01-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.4.0 <= 2.4.35.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.4.0 <= 2.4.35.2"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.0 < 2.6.24 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.0 < 2.6.24"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				2.6.24 Search vendor "Linux" for product "Linux Kernel" and version "2.6.24"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				2.6.24 Search vendor "Linux" for product "Linux Kernel" and version "2.6.24"		rc1		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				2.6.24 Search vendor "Linux" for product "Linux Kernel" and version "2.6.24"		rc2		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				2.6.24 Search vendor "Linux" for product "Linux Kernel" and version "2.6.24"		rc3		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				10.2 Search vendor "Opensuse" for product "Opensuse" and version "10.2"		-		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				10.3 Search vendor "Opensuse" for product "Opensuse" and version "10.3"		-		Affected
Suse Search vendor "Suse"		Linux Enterprise Desktop Search vendor "Suse" for product "Linux Enterprise Desktop"				10 Search vendor "Suse" for product "Linux Enterprise Desktop" and version "10"		sp1		Affected
Suse Search vendor "Suse"		Linux Enterprise Real Time Extension Search vendor "Suse" for product "Linux Enterprise Real Time Extension"				10 Search vendor "Suse" for product "Linux Enterprise Real Time Extension" and version "10"		sp1		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				10 Search vendor "Suse" for product "Linux Enterprise Server" and version "10"		sp1		Affected
Suse Search vendor "Suse"		Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit"				10 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "10"		sp1		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Desktop Search vendor "Redhat" for product "Enterprise Linux Desktop"				4.0 Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "4.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Eus Search vendor "Redhat" for product "Enterprise Linux Eus"				4.6 Search vendor "Redhat" for product "Enterprise Linux Eus" and version "4.6"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Server Search vendor "Redhat" for product "Enterprise Linux Server"				4.0 Search vendor "Redhat" for product "Enterprise Linux Server" and version "4.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Workstation Search vendor "Redhat" for product "Enterprise Linux Workstation"				4.0 Search vendor "Redhat" for product "Enterprise Linux Workstation" and version "4.0"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				3.1 Search vendor "Debian" for product "Debian Linux" and version "3.1"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				4.0 Search vendor "Debian" for product "Debian Linux" and version "4.0"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				6.06 Search vendor "Canonical" for product "Ubuntu Linux" and version "6.06"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				6.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "6.10"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				7.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "7.04"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				7.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "7.10"		-		Affected