Lucene search
Ubuntu.comUB:CVE-2008-4937HistoryNov 05, 2008 - 12:00 a.m.
CVE-2008-4937
2008-11-0500:00:00
ubuntu.com
ubuntu.com
12
2.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
10.1%
senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite
arbitrary files via a symlink attack on a /tmp/log.obr.##### temporary
file.
Notes
| Author | Note |
|---|---|
| jdstrand | affected code not present in Ubuntu 6.06 LTS and 7.10 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | openoffice.org | < 1:2.4.1-1ubuntu2.1 | UNKNOWN |
Related
cve
cve
CVE-2008-4937
2008-11-05 15:00:14
cvelist
cvelist
CVE-2008-4937
2008-11-05 14:51:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:070 (openoffice.org)
2009-03-13 00:00:00
OpenOffice.org <= 2.4.1 senddoc Insecure Temporary File Creation Vulnerability - Linux
2008-11-11 00:00:00
OpenOffice senddoc Insecure Temporary File Creation Vulnerability (Linux)
2008-11-11 00:00:00
prion
prion
Arbitrary file deletion
2008-11-05 15:00:00
nessus
nessus
nvd
nvd
CVE-2008-4937
2008-11-05 15:00:14
gentoo
gentoo
OpenOffice.org: Multiple vulnerabilities
2008-12-12 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2008-11-26 00:00:00
OpenOffice.org Internationalization update
2008-12-23 00:00:00
2.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
10.1%
Related for UB:CVE-2008-4937