Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5312

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-5312
Last Modified 28 Dec 2010 12:00:00
Published 03 Dec 2008 12:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5312

Summary

mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) panda-autoupdate.new, (4) trend-autoupdate.new, and (5) rav-autoupdate.new scripts in /etc/MailScanner/autoupdate/, a different vulnerability than CVE-2008-5140.

Vulnerable Systems

Application

  • Mailscanner 4.55.10

  • Mailscanner 4.56.8-1

  • Mailscanner 4.57.7-1

  • Mailscanner 4.58.9-1

  • Mailscanner 4.59.4-2

  • Mailscanner 4.60.8-1

  • Mailscanner 4.61.7-2

  • Mailscanner 4.62.9-3

  • Mailscanner 4.63.8-1

  • Mailscanner 4.64.3-2

  • Mailscanner 4.65.3-1

  • Mailscanner 4.66.5-3

  • Mailscanner 4.67.6-1

  • Mailscanner 4.68.8

  • Mailscanner 4.68.8-1

  • Mailscanner 4.69.9-3

  • Mailscanner 4.70.7-1

  • Mailscanner 4.71.10-1

  • Mailscanner 4.72.5-1

  • Mailscanner 4.73.4-2


References

BID - 32557

MLIST - [oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks

CONFIRM - http://www.mailscanner.info/ChangeLog

SECUNIA - 33117

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353#44


Last Updated: 27 May 2016 10:48:46