CVE-2008-5394
Debian - Symlink In Login Arbitrary File Ownership
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line (aka ut_line) field in a utmp entry.
/bin/login en shadow 4.0.18.1 en Debian GNU/Linux, y probablemente otras distribuciones de Linux, permiten a los usuarios locales en el el grupo utmp sobrescribir arbitrariamente archivos a través de un ataque de enlace simbólico en un archivo temporal referenciado en un campo línea (alias ut_line) en una entrada utmp.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-12-08 CVE Reserved
- 2008-12-09 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-59: Improper Link Resolution Before File Access ('Link Following')
CAPEC
References (12)
URL | Tag | Source |
---|---|---|
http://bugs.debian.org/332198 | X_refsource_confirm | |
http://bugs.debian.org/505071 | X_refsource_confirm | |
http://bugs.debian.org/505271 | X_refsource_confirm | |
http://osvdb.org/52200 | Vdb Entry | |
http://securityreason.com/securityalert/4695 | Third Party Advisory | |
http://www.securityfocus.com/archive/1/498769/100/0/threaded | Mailing List | |
http://www.securityfocus.com/bid/32552 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/47037 | Vdb Entry |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/7313 | 2024-08-07 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://security.gentoo.org/glsa/glsa-200903-24.xml | 2018-10-11 | |
http://www.mandriva.com/security/advisories?name=MDVSA-2009:062 | 2018-10-11 | |
http://www.ubuntu.com/usn/usn-695-1 | 2018-10-11 |