Executive Summary

Summary
Titlefence: Multiple symlink vulnerabilites
Informations
NameGLSA-201009-09First vendor Publication2010-09-29
VendorGentooLast vendor Modification2010-09-29
Severity (Vendor) NormalRevisionN/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score7.2Attack RangeLocal
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

fence contains multiple programs containing vulnerabilites that may allow local users to overwrite arbitrary files via a symlink attack.

Background

fence is an I/O group fencing system.

Description

The fence_apc, fence_apc_snmp (CVE-2008-4579) and fence_manual
(CVE-2008-4580) programs contain symlink vulnerabilites.

Impact

These vulnerabilities may allow arbitrary files to be overwritten with root privileges.

Workaround

There is no known workaround at this time.

Resolution

Gentoo discontinued support for fence. All fence users should uninstall and choose another software that provides the same functionality.
# emerge --unmerge sys-cluster/fence

References

[ 1 ] CVE-2008-4579 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4579
[ 2 ] CVE-2008-4580 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4580

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-201009-09.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-201009-09.xml

CWE : Common Weakness Enumeration

idName
CWE-59Improper Link Resolution Before File Access ('Link Following')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10799
 
Oval ID: oval:org.mitre.oval:def:10799
Title: The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Description: The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Family: unix Class: vulnerability
Reference(s): CVE-2008-4579
Version: 5
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application1

OpenVAS Exploits

DateDescription
2011-08-09Name : CentOS Update for cman CESA-2009:1341 centos5 i386
File : nvt/gb_CESA-2009_1341_cman_centos5_i386.nasl
2011-03-09Name : Gentoo Security Advisory GLSA 201009-09 (fence)
File : nvt/glsa_201009_09.nasl
2009-12-30Name : Ubuntu USN-875-1 (redhat-cluster-suite)
File : nvt/ubuntu_875_1.nasl
2009-09-21Name : CentOS Security Advisory CESA-2009:1341 (cman)
File : nvt/ovcesa2009_1341.nasl
2009-09-09Name : RedHat Security Advisory RHSA-2009:1341
File : nvt/RHSA_2009_1341.nasl
2009-02-17Name : Fedora Update for cman FEDORA-2008-9042
File : nvt/gb_fedora_2008_9042_cman_fc9.nasl
2009-02-17Name : Fedora Update for gfs2-utils FEDORA-2008-9042
File : nvt/gb_fedora_2008_9042_gfs2-utils_fc9.nasl
2009-02-17Name : Fedora Update for rgmanager FEDORA-2008-9042
File : nvt/gb_fedora_2008_9042_rgmanager_fc9.nasl
2009-02-17Name : Fedora Update for cman FEDORA-2008-9458
File : nvt/gb_fedora_2008_9458_cman_fc9.nasl
2009-02-17Name : Fedora Update for gfs2-utils FEDORA-2008-9458
File : nvt/gb_fedora_2008_9458_gfs2-utils_fc9.nasl
2009-02-17Name : Fedora Update for rgmanager FEDORA-2008-9458
File : nvt/gb_fedora_2008_9458_rgmanager_fc9.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
50047fence fence_apc_snmp apclog Temporary File Symlink Arbitrary File Modification
50046fence fence_apc apclog Temporary File Symlink Arbitrary File Modification
49166fence fence_manual fence_manual.fifo Temporary File Symlink Arbitrary File Ov...

Nessus® Vulnerability Scanner

DateDescription
2013-01-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2009-1341.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090902_cman_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing a security update.
File : sl_20110216_fence_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2010-10-06Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201009-09.nasl - Type : ACT_GATHER_INFO
2010-01-06Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2009-1341.nasl - Type : ACT_GATHER_INFO
2009-12-21Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-875-1.nasl - Type : ACT_GATHER_INFO
2008-10-24Name : The remote Fedora host is missing one or more security updates.
File : fedora_2008-9042.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2014-02-17 11:36:56
  • Multiple Updates