Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6211

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-6211
Last Modified 20 Jan 2009 12:00:00
Published 03 Dec 2007 08:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-6211

Summary

Send ICMP Nasty Garbage (sing) on Debian GNU/Linux allows local users to append to arbitrary files and gain privileges via the -L (output log file) option. NOTE: this issue is only a vulnerability in limited environments, since sing is not installed setuid, and the administrator would need to override a non-setuid default during installation.

Vulnerable Systems

Application

  • Sing 1.1


References

XF - sing-logfile-privilege-escalation(38822)

BID - 26679

BUGTRAQ - 20071204 Re: sing (debian) vunlerability?

BUGTRAQ - 20071203 sing (debian) vunlerability?

SREASON - 3412

OSVDB - 44157


Last Updated: 27 May 2016 10:46:24