| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability was found in DHIS tools. It has been rated as critical. Affected by this vulnerability is an unknown functionality of the file register-q.sh. Performing a manipulation results in symlink. There is not any exploit available. Upgrading the affected component is advised.
Details
A vulnerability was found in DHIS tools (version unknown). It has been classified as critical. This affects an unknown function of the file register-q.sh. The manipulation with an unknown input leads to a symlink vulnerability. CWE is classifying the issue as CWE-61. The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files. This is going to have an impact on confidentiality, integrity, and availability.
The weakness was released 12/27/2005 by Javier Fernandez-Sanguino Pena (Website). It is possible to read the advisory at debian.org. Attacking locally is a requirement. No form of authentication is needed for exploitation. Technical details of the vulnerability are known, but there is no available exploit.
The vulnerability scanner Nessus provides a plugin with the ID 22794 (Debian DSA-928-1 : dhis-tools-dns - insecure temporary file), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Debian Local Security Checks and running in the context l.
Upgrading eliminates this vulnerability. A possible mitigation has been published before and not just after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (22794), OSVDB (21935†) and Secunia (SA18227†). Entry connected to this vulnerability is available at VDB-27760. Be aware that VulDB is the high quality source for vulnerability data.
Product
Name
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.9VulDB Meta Temp Score: 5.7
VulDB Base Score: 5.9
VulDB Temp Score: 5.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: SymlinkCWE: CWE-61 / CWE-59
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 22794
Nessus Name: Debian DSA-928-1 : dhis-tools-dns - insecure temporary file
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Timeline
12/27/2005 🔍12/27/2005 🔍
12/27/2005 🔍
10/14/2006 🔍
05/05/2016 🔍
07/28/2022 🔍
Sources
Advisory: debian.orgResearcher: Javier Fernandez-Sanguino Pena
Status: Not defined
GCVE (VulDB): GCVE-100-83391
Secunia: 18227
OSVDB: 21935 - DHIS Tools register-q.sh Symlink Arbitrary File Overwrite
See also: 🔍
Entry
Created: 05/05/2016 08:09Updated: 07/28/2022 10:16
Changes: 05/05/2016 08:09 (46), 11/13/2018 09:50 (2), 07/28/2022 10:16 (2)
Complete: 🔍
Cache ID: 216:030:103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.