Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2008-6552

Disclosure Date: March 30, 2009
CVE-2008-6552
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) before 2.03.09-1, gfs2-utils before 2.03.09-1, and CMAN – The Cluster Manager before 2.03.09-1 on Fedora 9.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

References

Canonical
CVE-2008-6552 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6552)
BID-32179 (http://www.securityfocus.com/bid/32179)
Advisory
SECUNIA-32616 (http://secunia.com/advisories/32616)
ADV-2011-0416 (http://www.vupen.com/english/advisories/2011/0416)
http://www.redhat.com/support/errata/RHSA-2009-1341.html
http://www.redhat.com/support/errata/RHSA-2011-0264.html
SECUNIA-36555 (http://secunia.com/advisories/36555)
FEDORA-2008-9458 (http://www.redhat.com/archives/fedora-package-announce/2008-November/msg00163.html)
ADV-2011-0417 (http://www.vupen.com/english/advisories/2011/0417)
SECUNIA-32602 (http://secunia.com/advisories/32602)
SECUNIA-43372 (http://secunia.com/advisories/43372)
USN-875-1 (http://www.ubuntu.com/usn/USN-875-1)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11404
FEDORA-2008-9458 (http://www.redhat.com/archives/fedora-package-announce/2008-November/msg00165.html)
OSVDB-50300 (http://osvdb.org/50300)
http://rhn.redhat.com/errata/RHSA-2009-1337.html
http://www.redhat.com/support/errata/RHSA-2011-0265.html
SECUNIA-43367 (http://secunia.com/advisories/43367)
FEDORA-2008-9458 (http://www.redhat.com/archives/fedora-package-announce/2008-November/msg00164.html)
XF-clusterproject-unspecified-priv-escalation(46412) (https://exchange.xforce.ibmcloud.com/vulnerabilities/46412)
SECUNIA-36530 (http://secunia.com/advisories/36530)
OSVDB-50301 (http://osvdb.org/50301)
http://www.redhat.com/support/errata/RHSA-2009-1339.html
OSVDB-50299 (http://osvdb.org/50299)

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis