Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0884

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-0884
Last Modified 05 Sep 2008 12:00:00
Published 03 Apr 2008 08:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0884

Summary

The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux (RHEL) 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth file permissions, leading to a change to world-writable permissions for the /etc/pam.d/system-auth-ac file, which allows local users to gain privileges by modifying this file.

Vulnerable Systems

Operating System

  • Red Hat Enterprise Linux 5


References

SECUNIA - 29642

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=435442

XF - redhat-lsppeal4config-insecure-permissions(41584)

BID - 28557

SECTRACK - 1019740

REDHAT - RHSA-2008:0193


Last Updated: 27 May 2016 10:46:58