Vulnerability Details : CVE-2008-4192

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.
Publish Date : 2008-09-29 Last Update Date : 2017-08-07

Collapse All Expand All Select Select&Copy	Scroll To Vendor Statements(0) Additional Vendor Data(0) OVAL Definitions(0) Vulnerable Products(0) # Of Vulns By Products References(0) Metasploit Modules(0)	Comments View User Comments Add Comment	External Links Secunia Advisories XForce Advisories Vulnerability Details at NVD Vulnerability Details at Mitre Nessus Plugins Linux Kernel Git Repository First CVSS Guide
Search Twitter Search YouTube Search Google

- CVSS Scores & Vulnerability Types

CVSS Score	6.9
Confidentiality Impact	Complete (There is total information disclosure, resulting in all system files being revealed.)
Integrity Impact	Complete (There is a total compromise of system integrity. There is a complete loss of system protection, resulting in the entire system being compromised.)
Availability Impact	Complete (There is a total shutdown of the affected resource. The attacker can render the resource completely unavailable.)
Access Complexity	Medium (The access conditions are somewhat specialized. Some preconditions must be satistified to exploit)
Authentication	Not required (Authentication is not required to exploit the vulnerability.)
Gained Access	Admin
Vulnerability Type(s)
CWE ID	59

- Vendor Statements

Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-4192 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/
Source: Redhat

- Additional Vendor Supplied Data

Vendor	Impact	CVSS Score	CVSS Vector	Report Date	Publish Date
Redhat	low	1.2	AV:L/AC:H/Au:N/C:N/I:P/A:N	2008-08-26	2008-08-24

If you are a vendor and you have additional data which can be automatically imported into our database, please contact admin @ cvedetails.com

- Products Affected By CVE-2008-4192

#	Product Type	Vendor	Product	Version	Update	Edition	Language
1	Application	Redhat	Cman	2.20080629				Version Details Vulnerabilities
2	Application	Redhat	Cman	2.20080801				Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor	Product	Vulnerable Versions
Redhat	Cman	2

- References For CVE-2008-4192

https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00666.html
FEDORA FEDORA-2008-9042

https://exchange.xforce.ibmcloud.com/vulnerabilities/44845
XF cman-fenceegenera-symlink(44845)

http://www.openwall.com/lists/oss-security/2008/09/24/2
MLIST [oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman)

https://bugzilla.redhat.com/show_bug.cgi?id=460476 CONFIRM

https://bugs.gentoo.org/show_bug.cgi?id=235770 CONFIRM

http://www.vupen.com/english/advisories/2011/0419
VUPEN ADV-2011-0419

http://www.securityfocus.com/bid/30898
BID 30898 cman 'fence_egenera' Insecure Temporary File Creation Vulnerability Release Date:2009-12-18

http://www.ubuntu.com/usn/USN-875-1
UBUNTU USN-875-1

http://www.redhat.com/support/errata/RHSA-2011-0266.html
REDHAT RHSA-2011:0266

http://www.openwall.com/lists/oss-security/2008/10/30/2
MLIST [oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire

http://www.openwall.com/lists/oss-security/2008/09/18/3
MLIST [oss-security] 20080918 CVE Request (openswan, emacspeak, cman)

http://uvw.ru/report.lenny.txt

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496410 CONFIRM

http://dev.gentoo.org/~rbu/security/debiantemp/cman CONFIRM

- Metasploit Modules Related To CVE-2008-4192

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)