Vulnerability CVE-2008-1628


Published: 2008-04-02   Modified: 2012-02-12

Description:
Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information.

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

Vendor: Linux
Product: Audit 
Version: 1.6.9;

CVSS2 => (AV:L/AC:M/Au:S/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.1/10
6.4/10
2.7/10
Exploit range
Attack complexity
Authentication
Local
Medium
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
https://www.redhat.com/archives/linux-audit/2008-March/msg00138.html
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00200.html
http://xforce.iss.net/xforce/xfdb/41576
http://www.vupen.com/english/advisories/2008/1052/references
http://www.securitytracker.com/id?1019824
http://www.securityfocus.com/bid/28524
http://www.mandriva.com/security/advisories?name=MDVSA-2008:083
http://security.gentoo.org/glsa/glsa-200807-14.xml
http://secunia.com/advisories/31316
http://secunia.com/advisories/29957
http://secunia.com/advisories/29754
http://secunia.com/advisories/29617
http://people.redhat.com/sgrubb/audit/ChangeLog
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html

Related CVE
CVE-2019-14763
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.
CVE-2018-20961
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
CVE-2019-10142
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parameter passed to an ioctl was incorrectly validated and used in size calculations for the page size calculation. A...
CVE-2018-16871
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence....
CVE-2017-18379
In the Linux kernel before 4.14, an out of boundary access happened in drivers/nvme/target/fc.c.
CVE-2016-10764
In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so the ">" should be ">=" instead.
CVE-2015-9289
In the Linux kernel before 4.1.4, a buffer overflow occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the userspace API. However, the code allows larger values suc...
CVE-2012-6712
In the Linux kernel before 3.4, a buffer overflow occurs in drivers/net/wireless/iwlwifi/iwl-agn-sta.c, which will cause at least memory corruption.

Copyright 2019, cxsecurity.com

 

Back to Top