oval:org.mitre.oval:def:6386
| Definition Id: oval:org.mitre.oval:def:6386 | |||
| Oval ID: | oval:org.mitre.oval:def:6386 | ||
| Title: | Linux Kernel 'truncate()' Local Privilege Escalation Vulnerability | ||
| Description: | fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable file in a setgid directory through the (1) truncate or (2) ftruncate function in conjunction with memory-mapped I/O. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2008-4210 | Version: | 1 |
| Platform(s): | VMWare ESX Server 3.5 | Product(s): | |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:5887 | |||
| Oval ID: | oval:org.mitre.oval:def:5887 | ||
| Title: | VMware ESX Server 3.5.0 is installed | ||
| Description: | The operating system installed on the system is VMware ESX Server 3.5.0. | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:vmware:esx:3.5.0 | Version: | 1 |
| Platform(s): | VMware ESX Server 3.5 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:6386 | |||
