Executive Summary

Informations
NameCVE-2008-1570First vendor Publication2008-03-31
VendorCveLast vendor Modification2017-08-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score6.9Attack RangeLocal
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score3.4AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Race condition in the create_lockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1570

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-26Leveraging Race Conditions
CAPEC-27Leveraging Race Conditions via Symbolic Links
CAPEC-29Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions

CWE : Common Weakness Enumeration

%idName
100 %CWE-362Race Condition

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:8031
 
Oval ID: oval:org.mitre.oval:def:8031
Title: DSA-1531 policyd-weight -- insecure temporary files
Description: Chris Howells discovered that policyd-weight, a policy daemon for the Postfix mail transport agent, created its socket in an insecure way, which may be exploited to overwrite or remove arbitrary files from the local system.
Family: unix Class: patch
Reference(s): DSA-1531
CVE-2008-1569
CVE-2008-1570
Version: 3
Platform(s): Debian GNU/Linux 4.0
Product(s): policyd-weight
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20303
 
Oval ID: oval:org.mitre.oval:def:20303
Title: DSA-1531-2 policyd-weight - insecure temporary files
Description: Chris Howells discovered that policyd-weight, a policy daemon for the Postfix mail transport agent, created its socket in an insecure way, which may be exploited to overwrite or remove arbitrary files from the local system.
Family: unix Class: patch
Reference(s): DSA-1531-2
CVE-2008-1569
CVE-2008-1570
Version: 5
Platform(s): Debian GNU/Linux 4.0
Product(s): policyd-weight
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

OpenVAS Exploits

DateDescription
2008-09-24Name : Gentoo Security Advisory GLSA 200804-11 (policyd-weight)
File : nvt/glsa_200804_11.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
43888policyd-weight for Postfix Socket Handling Unspecified Arbitrary File Manipul...

Nessus® Vulnerability Scanner

DateDescription
2008-04-17Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200804-11.nasl - Type : ACT_GATHER_INFO
2008-03-28Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1531.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM https://bugs.gentoo.org/show_bug.cgi?id=214403
GENTOO http://security.gentoo.org/glsa/glsa-200804-11.xml
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/41570

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2017-08-08 09:23:59
  • Multiple Updates
2016-06-28 17:13:14
  • Multiple Updates
2016-04-26 17:16:17
  • Multiple Updates
2014-02-17 10:44:28
  • Multiple Updates
2013-05-11 00:13:58
  • Multiple Updates