Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2008-5153 | First vendor Publication | 2008-11-18 |
| Vendor | Cve | Last vendor Modification | 2017-08-08 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 6.9 | Attack Range | Local |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 3.4 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| spell-check-logic.cgi in Moodle 1.8.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/spell-check-debug.log, (2) /tmp/spell-check-before, or (3) /tmp/spell-check-after temporary file. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5153 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:13572 | |||
| Oval ID: | oval:org.mitre.oval:def:13572 | ||
| Title: | DSA-1724-1 moodle -- several vulnerabilities | ||
| Description: | Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0500 It was discovered that the information stored in the log tables was not properly sanitised, which could allow attackers to inject arbitrary web code. CVE-2009-0502 It was discovered that certain input via the "Login as" function was not properly sanitised leading to the injection of arbitrary web script. CVE-2008-5153 Dmitry E. Oboukhov discovered that the SpellCheker plugin creates temporary files insecurely, allowing a denial of service attack. Since the plugin was unused, it is removed in this update. For the stable distribution these problems have been fixed in version 1.6.3-2+etch2. For the testing distribution these problems have been fixed in version 1.8.2.dfsg-3+lenny1. For the unstable distribution these problems have been fixed in version 1.8.2.dfsg-4. We recommend that you upgrade your moodle package. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1724-1 CVE-2009-0500 CVE-2009-0502 CVE-2008-5153 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 4.0 | Product(s): | moodle |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:8102 | |||
| Oval ID: | oval:org.mitre.oval:def:8102 | ||
| Title: | DSA-1724 moodle -- several vulnerabilities | ||
| Description: | Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems: It was discovered that the information stored in the log tables was not properly sanitised, which could allow attackers to inject arbitrary web code. It was discovered that certain input via the "Login as" function was not properly sanitised leading to the injection of arbitrary web script. Dmitry E. Oboukhov discovered that the SpellCheker plugin creates temporary files insecurely, allowing a denial of service attack. Since the plugin was unused, it is removed in this update. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1724 CVE-2009-0500 CVE-2009-0502 CVE-2008-5153 | Version: | 3 |
| Platform(s): | Debian GNU/Linux 4.0 | Product(s): | moodle |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-12-14 | Name : Fedora Core 10 FEDORA-2009-13040 (moodle) File : nvt/fcore_2009_13040.nasl |
| 2009-06-30 | Name : Ubuntu USN-791-1 (moodle) File : nvt/ubuntu_791_1.nasl |
| 2009-04-06 | Name : Fedora Core 10 FEDORA-2009-3280 (moodle) File : nvt/fcore_2009_3280.nasl |
| 2009-04-06 | Name : Fedora Core 9 FEDORA-2009-3283 (moodle) File : nvt/fcore_2009_3283.nasl |
| 2009-02-18 | Name : Debian Security Advisory DSA 1724-1 (moodle) File : nvt/deb_1724_1.nasl |
| 2009-02-18 | Name : Fedora Core 10 FEDORA-2009-1699 (moodle) File : nvt/fcore_2009_1699.nasl |
| 2009-02-13 | Name : Fedora Core 9 FEDORA-2009-1641 (moodle) File : nvt/fcore_2009_1641.nasl |
| 2009-01-26 | Name : Fedora Core 9 FEDORA-2009-0814 (moodle) File : nvt/fcore_2009_0814.nasl |
| 2009-01-26 | Name : Fedora Core 10 FEDORA-2009-0819 (moodle) File : nvt/fcore_2009_0819.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 49987 | Moodle spell-check-logic.cgi Multiple Temporary File Symlink Arbitrary File O... Moodle contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the spell-check-logic.cgi script creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2009-06-25 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-791-1.nasl - Type : ACT_GATHER_INFO |
| 2009-04-23 | Name : The remote Fedora host is missing a security update. File : fedora_2009-0819.nasl - Type : ACT_GATHER_INFO |
| 2009-02-17 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1724.nasl - Type : ACT_GATHER_INFO |
| 2009-01-22 | Name : The remote Fedora host is missing a security update. File : fedora_2009-0814.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2021-05-04 12:08:23 |
|
| 2021-04-22 01:08:44 |
|
| 2020-05-23 00:22:36 |
|
| 2017-08-08 09:24:31 |
|
| 2016-04-26 18:02:43 |
|
| 2014-02-17 10:47:19 |
|
| 2013-05-11 00:30:53 |
|
