CVE-2009-1601

Sažetak

The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory.

Reference

http://secunia.com/advisories/35000
http://www.securityfocus.com/bid/34818
http://www.ubuntu.com/usn/USN-770-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/50311
https://launchpad.net/bugs/365823

CVSS

Base:	6.8
Impact:	10.0
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-08-2017 - 01:30

Objavljeno

11-05-2009 - 15:30