CVE-2008-5312

mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) panda-autoupdate.new, (4) trend-autoupdate.new, and (5) rav-autoupdate.new scripts in /etc/MailScanner/autoupdate/, a different vulnerability than CVE-2008-5140.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.openwall.com/lists/oss-security/2008/11/29/1
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353#44
http://www.mailscanner.info/ChangeLog
http://secunia.com/advisories/33117	Vendor Advisory
http://www.securityfocus.com/bid/32557

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mailscanner:mailscanner:4.64.3-2:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.63.8-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.62.9-3:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.61.7-2:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.60.8-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.73.4-2:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.67.6-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.65.3-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.58.9-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.56.8-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.71.10-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.59.4-2:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.70.7-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.68.8-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.72.5-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.68.8:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.66.5-3:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.69.9-3:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.57.7-1:::::::*
	cpe:2.3:a:mailscanner:mailscanner:4.55.10:::::::*

Information

Published : 2008-12-03 09:30

Updated : 2010-12-27 21:00

NVD link : CVE-2008-5312

Mitre link : CVE-2008-5312

JSON object : View

CWE

CWE-59

Improper Link Resolution Before File Access ('Link Following')

Products Affected

mailscanner

mailscanner

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.openwall.com/lists/oss-security/2008/11/29/1", "name": "[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks", "tags": [], "refsource": "MLIST"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353#44", "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353#44", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.mailscanner.info/ChangeLog", "name": "http://www.mailscanner.info/ChangeLog", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/33117", "name": "33117", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securityfocus.com/bid/32557", "name": "32557", "tags": [], "refsource": "BID"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) panda-autoupdate.new, (4) trend-autoupdate.new, and (5) rav-autoupdate.new scripts in /etc/MailScanner/autoupdate/, a different vulnerability than CVE-2008-5140."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-59"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-5312", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "MEDIUM", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-12-03T17:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.64.3-2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.63.8-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.62.9-3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.61.7-2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.60.8-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.73.4-2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.67.6-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.65.3-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.58.9-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.56.8-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.71.10-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.59.4-2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.70.7-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.68.8-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.72.5-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.68.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.66.5-3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.69.9-3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.57.7-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mailscanner:mailscanner:4.55.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2010-12-28T05:00Z"}

6.9 /10