oval:org.mitre.oval:def:6386
Definition Id: oval:org.mitre.oval:def:6386 | |||
Oval ID: | oval:org.mitre.oval:def:6386 | ||
Title: | Linux Kernel 'truncate()' Local Privilege Escalation Vulnerability | ||
Description: | fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable file in a setgid directory through the (1) truncate or (2) ftruncate function in conjunction with memory-mapped I/O. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2008-4210 | Version: | 1 |
Platform(s): | VMWare ESX Server 3.5 | Product(s): | |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:5887 | |||
Oval ID: | oval:org.mitre.oval:def:5887 | ||
Title: | VMware ESX Server 3.5.0 is installed | ||
Description: | The operating system installed on the system is VMware ESX Server 3.5.0. | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:vmware:esx:3.5.0 | Version: | 1 |
Platform(s): | VMware ESX Server 3.5 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:6386 |