Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2008-3524
HistorySep 29, 2008 - 5:17 p.m.

CVE-2008-3524

2008-09-2917:17:29
CWE-59
redhat
web.nvd.nist.gov
39
cve-2008-3524
initscripts
symlink attack
file deletion
fedora 9
linux
security vulnerability
nvd

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

AI Score

6

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

rc.sysinit in initscripts before 8.76.3-1 on Fedora 9 and other Linux platforms allows local users to delete arbitrary files via a symlink attack on a file or directory under (1) /var/lock or (2) /var/run.

Affected configurations

Nvd
Node
redhatfedoraMatch9
AND
redhatinitscriptsMatch8.76.3
VendorProductVersionCPE
redhatfedora9cpe:2.3:o:redhat:fedora:9:*:*:*:*:*:*:*
redhatinitscripts8.76.3cpe:2.3:a:redhat:initscripts:8.76.3:*:*:*:*:*:*:*

Related

nessus 3
cvelist 2
openvas 2
seebug 1
prion 2
fedora 1
nvd 2
cve 1
securityvulns 2
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : initscripts Vulnerability (NS-SA-2021-0110)
2021-10-28 00:00:00
NewStart CGSL MAIN 6.02 : initscripts Vulnerability (NS-SA-2022-0069)
2022-05-09 00:00:00
Fedora 9 : initscripts-8.76.3-1 (2008-7667)
2008-09-25 00:00:00
cvelist
cvelist
CVE-2008-3524
2008-09-29 17:00:00
CVE-2008-4832
2008-11-17 23:00:00
openvas
openvas
Fedora Update for initscripts FEDORA-2008-7667
2009-02-17 00:00:00
Fedora Update for initscripts FEDORA-2008-7667
2009-02-17 00:00:00
seebug
seebug
Fedora initscriptsδ»»ζ„ζ–‡δ»Άεˆ ι™€ζΌζ΄ž
2008-09-27 00:00:00
prion
prion
Design/Logic Flaw
2008-09-29 17:17:00
Race condition
2008-11-17 23:30:00
fedora
fedora
[SECURITY] Fedora 9 Update: initscripts-8.76.3-1
2008-09-25 00:15:02
nvd
nvd
CVE-2008-3524
2008-09-29 17:17:29
CVE-2008-4832
2008-11-17 23:30:00
cve
cve
CVE-2008-4832
2008-11-17 23:30:00
securityvulns
securityvulns
rPSA-2008-0318-1 initscripts
2008-11-14 00:00:00
rPath Linux symbolic links vulnerability
2008-11-14 00:00:00

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

AI Score

6

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2008-3524
nessus3cvelist2openvas2seebug1prion2fedora1nvd2cve1securityvulns2