Lucene search
HistoryOct 15, 2008 - 8:08 p.m.
CVE-2008-4580
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
Affected configurations
Node
gentoocmanMatch2.02.00r1
ORgentoofenceMatch2.02.00r1
Related
cvelist
cvelist
CVE-2008-4580
2008-10-15 20:00:00
ubuntucve
ubuntucve
CVE-2008-4580
2008-10-15 00:00:00
prion
prion
Design/Logic Flaw
2008-10-15 20:08:00
cve
cve
CVE-2008-4580
2008-10-15 20:08:02
openvas
openvas
Gentoo Security Advisory GLSA 201009-09 (fence)
2011-03-09 00:00:00
Gentoo Security Advisory GLSA 201009-09 (fence)
2011-03-09 00:00:00
Ubuntu USN-875-1 (redhat-cluster-suite)
2009-12-30 00:00:00
gentoo
gentoo
fence: Multiple symlink vulnerabilities
2010-09-29 00:00:00
nessus
nessus
ubuntu
ubuntu
Red Hat Cluster Suite vulnerabilities
2009-12-18 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2008-4580