CVE-2008-5156 in systemimager-serverinfo

Summary

si_mkbootserver in systemimager-server 3.6.3 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/*.inetd.conf or (2) /tmp/pxe.conf.*.tmp temporary file.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

11/18/2008

Disclosure

11/18/2008

Moderation

VulDB entry created

Entries

VDB-45107 (1)

CPE

ready

CWE

CWE-59 (Confirmed)

CVSS

8.4

EPSS

0.00026

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5156
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5156
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5156/

◂ Previous Overview Next ▸