Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0008

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-0008
Last Modified 10 Aug 2011 12:00:00
Published 28 Jan 2008 07:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-0008

Summary

The pa_drop_root function in PulseAudio 0.9.8, and a certain 0.9.9 build, does not check return values from (1) setresuid, (2) setreuid, (3) setuid, and (4) seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail via attacks such as resource exhaustion.

Vulnerable Systems

Application

  • Pulseaudio 0.9.6

  • Pulseaudio 0.9.8


References

FEDORA - FEDORA-2008-0994

FEDORA - FEDORA-2008-0963

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=425481

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=347822

XF - pulseaudio-padroproot-privilege-escalation(39992)

VUPEN - ADV-2008-0283

UBUNTU - USN-573-1

BID - 27449

MANDRIVA - MDVSA-2008:027

DEBIAN - DSA-1476

GENTOO - GLSA-200802-07

SECUNIA - 28952

SECUNIA - 28738

SECUNIA - 28623

SECUNIA - 28608

CONFIRM - http://pulseaudio.org/changeset/2100

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=207214


Last Updated: 27 May 2016 10:46:38