CVE-2008-4580

2008-10-1520:00:00

redhat

www.cve.org

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.

References

bugs.gentoo.org/show_bug.cgi?id=240576

www.openwall.com/lists/oss-security/2008/10/13/3

www.openwall.com/lists/oss-security/2008/10/16/1

www.ubuntu.com/usn/USN-875-1

exchange.xforce.ibmcloud.com/vulnerabilities/45953