Lucene search
HistoryNov 06, 2008 - 3:55 p.m.
CVE-2008-4982
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
rkhunter in rkhunter 1.3.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rkhunter-debug temporary file. NOTE: this is probably a different vulnerability than CVE-2005-1270.
Affected configurations
Node
john_hornerkhunterMatch1.3.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| john_horne | rkhunter | 1.3.2 | cpe:2.3:a:john_horne:rkhunter:1.3.2:*:*:*:*:*:*:* |
Related
debiancve
debiancve
CVE-2008-4982
2008-11-06 15:55:52
CVE-2005-1270
2005-04-28 04:00:00
cvelist
cvelist
CVE-2008-4982
2008-11-06 11:00:00
CVE-2005-1270
2005-04-28 04:00:00
prion
prion
Code injection
2008-11-06 15:55:00
ubuntucve
ubuntucve
CVE-2008-4982
2008-11-06 00:00:00
cve
cve
CVE-2008-4982
2008-11-06 15:55:52
CVE-2005-1270
2005-04-28 04:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200504-25 (rkhunter)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200504-25 (rkhunter)
2008-09-24 00:00:00
FreeBSD Ports: rkhunter
2008-09-04 00:00:00
nessus
nessus
nvd
nvd
CVE-2005-1270
2005-04-26 04:00:00
freebsd
freebsd
rkhunter -- insecure temporary file creation
2005-04-26 00:00:00
securityvulns
securityvulns
[ GLSA 200504-25 ] Rootkit Hunter: Insecure temporary file creation
2005-04-28 00:00:00
gentoo
gentoo
Rootkit Hunter: Insecure temporary file creation
2005-04-26 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2008-4982