CVE-2008-5135 in os-proberالمعلومات

الملخص

بحسب MITRE

** DISPUTED ** os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/mounted-map or (2) /tmp/raided-map temporary file. NOTE: the vendor disputes this issue, stating "the insecure code path should only ever run inside a d-i environment, which has no non-root users."

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

18/11/2008

إفشاء

18/11/2008

الاعتدال

تمت الموافقة

إدخال

VDB-45086

CPE

جاهز

CWE

CWE-59 (مؤكد)

CVSS

6.2 (NVD)

EPSS

0.00368

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5135
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5135
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5135/

التالي ▸نظرة عامة ◂ السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!