Executive Summary

Summary
Title Emacs vulnerability
Informations
Name USN-919-1 First vendor Publication 2010-03-29
Vendor Ubuntu Last vendor Modification 2010-03-29
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score 4.4 Attack Range Local
Cvss Impact Score 6.4 Attack Complexity Medium
Cvss Expoit Score 3.4 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects the following Ubuntu releases:

Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 Ubuntu 9.10

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 8.04 LTS:
emacs22-bin-common 22.1-0ubuntu10.2

Ubuntu 8.10:
emacs22-bin-common 22.2-0ubuntu2.8.10.1

Ubuntu 9.04:
emacs22-bin-common 22.2-0ubuntu2.9.04.1

Ubuntu 9.10:
emacs22-bin-common 22.2-0ubuntu6.2
emacs23-bin-common 23.1+1-4ubuntu3.2

In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

Dan Rosenberg discovered that the email helper in Emacs did not correctly check file permissions. A local attacker could perform a symlink race to read or append to another user's mailbox if it was stored under a group-writable group-"mail" directory.

Original Source

Url : http://www.ubuntu.com/usn/USN-919-1

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-264 Permissions, Privileges, and Access Controls

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:13126
 
Oval ID: oval:org.mitre.oval:def:13126
Title: USN-919-1 -- emacs22, emacs23 vulnerability
Description: Dan Rosenberg discovered that the email helper in Emacs did not correctly check file permissions. A local attacker could perform a symlink race to read or append to another user�s mailbox if it was stored under a group-writable group-"mail" directory.
Family: unix Class: patch
Reference(s): USN-919-1
CVE-2010-0825
 Version: 5
Platform(s): Ubuntu 8.04
Ubuntu 8.10
Ubuntu 9.10
Ubuntu 9.04
 Product(s): emacs22
emacs23
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 4

OpenVAS Exploits

Date Description
2010-05-04 Name : FreeBSD Ports: movemail
File : nvt/freebsd_movemail.nasl
2010-04-29 Name : Mandriva Update for emacs MDVSA-2010:083 (emacs)
File : nvt/gb_mandriva_MDVSA_2010_083.nasl
2010-04-06 Name : Ubuntu Update for emacs22, emacs23 vulnerability USN-919-1
File : nvt/gb_ubuntu_USN_919_1.nasl
2010-03-02 Name : Mandriva Update for initscripts MDVA-2010:083 (initscripts)
File : nvt/gb_mandriva_MDVA_2010_083.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
63430 emacs lib-src/movemail.c Symlink Local Privilege Escalation

Nessus® Vulnerability Scanner

Date Description
2010-04-21 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-083.nasl - Type : ACT_GATHER_INFO
2010-03-30 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-919-1.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 12:06:40
  • Multiple Updates