Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6552

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-6552
Last Modified 22 Jan 2013 11:09:15
Published 30 Mar 2009 12:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6552

Summary

Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) before 2.03.09-1, gfs2-utils before 2.03.09-1, and CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9.

Vulnerable Systems

Operating System

  • Fedoraproject Fedora 9

Application

  • Redhat Cluster Project 2.00.00

  • Redhat Cluster Project 2.01.00

  • Redhat Cluster Project 2.02.00

  • Redhat Cluster Project 2.03.00

  • Redhat Cluster Project 2.03.01

  • Redhat Cluster Project 2.03.03

  • Redhat Cluster Project 2.03.04

  • Redhat Cluster Project 2.03.05

  • Redhat Cluster Project 2.03.08

  • Redhat Cluster Project 2.03.09

  • Redhat Cluster Project 2.03.10

  • Redhat Cluster Project 2.03.11

  • Redhat Cluster Project 2.03.7

  • Redhat Cluster Project 2.99.00

  • Redhat Cluster Project 2.99.01

  • Redhat Cluster Project 2.99.02

  • Redhat Cluster Project 2.99.03

  • Redhat Cluster Project 2.99.04

  • Redhat Cluster Project 2.99.05

  • Redhat Cluster Project 2.99.06

  • Redhat Cluster Project 2.99.07

  • Redhat Cluster Project 2.99.08

  • Redhat Cluster Project 2.99.09

  • Redhat Cluster Project 2.99.10

  • Redhat Cluster Project 2.99.11

  • Redhat Cluster Project 2.99.12

  • Redhat Cluster Project 2.99.13

  • Redhat Cman 2.03.03-1

  • Redhat Cman 2.03.04-1

  • Redhat Cman 2.03.05-1

  • Redhat Cman 2.03.07-1

  • Redhat Cman 2.03.08-1

  • Redhat Gfs2-utils 2.03.03-1

  • Redhat Gfs2-utils 2.03.04-1

  • Redhat Gfs2-utils 2.03.05-1

  • Redhat Gfs2-utils 2.03.07-1

  • Redhat Gfs2-utils 22.03.08-1

  • Redhat Rgmanager 2.03.03-1

  • Redhat Rgmanager 2.03.04-1

  • Redhat Rgmanager 2.03.05-1

  • Redhat Rgmanager 2.03.07-1

  • Redhat Rgmanager 2.03.08-1


References

XF - clusterproject-unspecified-priv-escalation(46412)

VUPEN - ADV-2011-0417

VUPEN - ADV-2011-0416

UBUNTU - USN-875-1

BID - 32179

REDHAT - RHSA-2011:0265

REDHAT - RHSA-2011:0264

FEDORA - FEDORA-2008-9458

SECUNIA - 43372

SECUNIA - 43367

SECUNIA - 32616

SECUNIA - 32602

OSVDB - 50301

OSVDB - 50300

OSVDB - 50299

REDHAT - RHSA-2009:1341

REDHAT - RHSA-2009:1339

SECUNIA - 36555

SECUNIA - 36530

REDHAT - RHSA-2009:1337

Related Patches

Red Hat 2009:1341-02 RHSA Low: cman security, bug fix, and enhancement update for RHEL 5 x86


Last Updated: 27 May 2016 10:55:05