Vulnerability Details : CVE-2008-0931

w_export.c in XWine 1.0.1 on Debian GNU/Linux sets insecure permissions (0666) for /etc/wine/config, which might allow local users to execute arbitrary commands or cause a denial of service by modifying the file.

Vulnerability category: Denial of service

Published 2008-03-04 00:44:00

Updated 2008-09-05 21:36:22

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2008-0931

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2008-0931

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.3	MEDIUM	AV:L/AC:M/Au:N/C:N/I:C/A:C	3.4	9.2	[email protected]
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2008-0931

CWE-264

Assigned by: [email protected] (Primary)

References for CVE-2008-0931

Products affected by CVE-2008-0931

Xwine » Xwine » Version: 1.0.1
cpe:2.3:a:xwine:xwine:1.0.1:*:*:*:*:*:*:*
Matching versions
When used together with: Debian » Debian Linux