Vulnerability CVE-2010-4173


Published: 2010-11-22   Modified: 2012-02-13

Description:
The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp, which allows local users to overwrite arbitrary files via a (1) symlink or (2) hard link attack on the libsdp.log.##### temporary file.

Type:

CWE-59

(Improper Link Resolution Before File Access ('Link Following'))

CVSS2 => (AV:L/AC:M/Au:N/C:N/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
3.3/10
4.9/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
Partial
Affected software
Openfabrics -> Libsdp 

 References:
https://bugzilla.redhat.com/show_bug.cgi?id=647941
http://www.openwall.com/lists/oss-security/2010/11/16/7
http://www.openwall.com/lists/oss-security/2010/11/16/2
http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz

Copyright 2024, cxsecurity.com

 

Back to Top