CVE-2008-4580

Related Files

Gentoo Linux Security Advisory 201009-9

Posted Sep 30, 2010

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201009-9 - fence contains multiple programs containing vulnerabilities that may allow local users to overwrite arbitrary files via a symlink attack. The fence_apc, fence_apc_snmp (CVE-2008-4579) and fence_manual (CVE-2008-4580) programs contain symlink vulnerabilities. Versions less than 2.03.09 are affected.

tags | advisory, arbitrary, local, vulnerability

systems | linux, gentoo

advisories | CVE-2008-4579, CVE-2008-4580

SHA-256 | 8a50fbcaf119fc9aaebdef84ea57f50bde4a7b322ffb95abb5c63176eb7ab9db

Download | Favorite | View

Ubuntu Security Notice 875-1

Posted Dec 18, 2009

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 875-1 - Multiple insecure temporary file handling vulnerabilities were discovered in Red Hat Cluster. A local attacker could exploit these to overwrite arbitrary local files via symlinks. It was discovered that CMAN did not properly handle malformed configuration files. An attacker could cause a denial of service (via CPU consumption and memory corruption) in a node if the attacker were able to modify the cluster configuration for the node.

tags | advisory, denial of service, arbitrary, local, vulnerability

systems | linux, redhat, ubuntu

advisories | CVE-2008-4192, CVE-2008-4579, CVE-2008-4580, CVE-2008-6552, CVE-2008-6560

SHA-256 | 6008379b458b676bea15df25c429ee5c30e0d484a4194c41c87df2e6fec0a76a

Download | Favorite | View