6.9 - CVE-2008-5374

Executive Summary

Informations
Name	CVE-2008-5374	First vendor Publication	2008-12-08
Vendor	Cve	Last vendor Modification	2013-04-19

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	6.9	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5374

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-59	Improper Link Resolution Before File Access ('Link Following')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:21954

Oval ID:	oval:org.mitre.oval:def:21954
Title:	RHSA-2011:1073: bash security, bug fix, and enhancement update (Low)
Description:	bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1073-01 CESA-2011:1073 CVE-2008-5374	Version:	4
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	bash
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x AND bash is earlier than 0:3.2-32.el5

Definition Id: oval:org.mitre.oval:def:23045

Oval ID:	oval:org.mitre.oval:def:23045
Title:	ELSA-2011:1073: bash security, bug fix, and enhancement update (Low)
Description:	bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1073-01 CVE-2008-5374	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	bash
Definition Synopsis:
Oracle Linux 5.x AND bash is earlier than 0:3.2-32.el5

Definition Id: oval:org.mitre.oval:def:27689

Oval ID:	oval:org.mitre.oval:def:27689
Title:	DEPRECATED: ELSA-2011-1073 -- bash security, bug fix, and enhancement update (low)
Description:	[3.2-32] - Dont include backup files Resolves: #700157 [3.2-31] - Use 'mktemp' for temporary files Resolves: #700157 [3.2-30] - Added man page references to systemwide .bash_logout Resolves: #592979 [3.2-29] - Readline glitch, when editing line with more spaces and resizing window Resolves: #525474 [3.2-28] - Fix the memory leak in read builtin Resolves: #618393 - Dont append slash to non-directories Resolves: #583919 [3.2-27] - Test .dynamic section if has PROGBITS or NOBITS Resolves: #484809 - Better random number generator Resolves: #492908 - Allow to source scripts with embeded NULL chars Resolves: #503701 [3.2-26] - vi mode redo insert fixed Resolves: #575076 - Dont show broken pipe messages for builtins Resolves: #546529 - Dont include loadables in doc dir Resolves: #663656 - Enable system-wide .bash_logout for login shells Resolves: #592979 [3.2-25] - Dont abort source builtin Resolves: #448508 - Correctly place cursor Resolves: #463880 - Minor man page clarification for trap builtin Resolves: #504904
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-1073 CVE-2008-5374	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	bash
Definition Synopsis:
Oracle Linux 5.x AND bash is earlier than 0:3.2-32.el5

CPE : Common Platform Enumeration

Type	Description	Count
Application	Matthias Klose Bash-Doc cpe:2.3:a:matthias_klose:bash-doc:3.2:::::::*	1

OpenVAS Exploits

Date	Description
2012-10-22	Name : Gentoo Security Advisory GLSA 201210-05 (bash) File : nvt/glsa_201210_05.nasl
2012-07-30	Name : CentOS Update for bash CESA-2011:1073 centos5 x86_64 File : nvt/gb_CESA-2011_1073_bash_centos5_x86_64.nasl
2011-09-23	Name : CentOS Update for bash CESA-2011:1073 centos5 i386 File : nvt/gb_CESA-2011_1073_bash_centos5_i386.nasl
2011-07-22	Name : RedHat Update for bash RHSA-2011:1073-01 File : nvt/gb_RHSA-2011_1073-01_bash.nasl
2011-02-18	Name : RedHat Update for bash RHSA-2011:0261-01 File : nvt/gb_RHSA-2011_0261-01_bash.nasl
2010-01-19	Name : Mandriva Update for bash MDVSA-2010:004 (bash) File : nvt/gb_mandriva_MDVSA_2010_004.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
51690	bash-doc Multiple Script Temporary File Symlink Arbitrary File Overwrite

Nessus® Vulnerability Scanner

Date	Description
2014-11-17	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2011-1090.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2011-0261.nasl - Type : ACT_GATHER_INFO
2012-10-22	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201210-05.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20110216_bash_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20110721_bash_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2011-09-23	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2011-1073.nasl - Type : ACT_GATHER_INFO
2011-07-22	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2011-1073.nasl - Type : ACT_GATHER_INFO
2011-02-17	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2011-0261.nasl - Type : ACT_GATHER_INFO
2010-01-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-004.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/32733
GENTOO	http://security.gentoo.org/glsa/glsa-201210-05.xml
MANDRIVA	http://www.mandriva.com/security/advisories?name=MDVSA-2010:004
MISC	http://uvw.ru/report.sid.txt
MLIST	http://lists.debian.org/debian-devel/2008/08/msg00347.html
REDHAT	http://www.redhat.com/support/errata/RHSA-2011-0261.html http://www.redhat.com/support/errata/RHSA-2011-1073.html
SECUNIA	http://secunia.com/advisories/43365 http://secunia.com/advisories/51086
VUPEN	http://www.vupen.com/english/advisories/2011/0414

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-05-04 12:08:30	Multiple Updates
2021-04-22 01:08:51	Multiple Updates
2020-05-23 00:22:42	Multiple Updates
2016-04-26 18:05:59	Multiple Updates
2014-11-18 13:25:33	Multiple Updates
2014-02-17 10:47:32	Multiple Updates
2013-05-11 00:32:02	Multiple Updates
2013-04-19 13:19:45	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	3
CPE ID(s)	1
Sources(s)	10
osvdb(s)	1
Openvas Exploit(s)	6
Nessus® Exploit(s)	9

	Related
6.9	RHSA-2011:1073
6.9	RHSA-2011:0261
6.9	MDVSA-2010:004
6.9	GLSA-201210-05
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 4 more Alert(s)

6.9 - CVE-2008-5374

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU