CVE-2008-4192

Redhat Cman - Symlink Following

Title source: rule

Description

The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.

Exploits (1)

exploitdb WORKING POC

rubyremotewindows

https://www.exploit-db.com/exploits/19295

View Code ZIP pw:eip

References (18)

[Issue Tracking] https://bugs.gentoo.org/show_bug.cgi?id=235770

[Issue Tracking] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496410

[Various Sources] http://dev.gentoo.org/~rbu/security/debiantemp/cman

[Vendor Advisory] http://secunia.com/advisories/31887

[Vendor Advisory] http://secunia.com/advisories/32387

[Vendor Advisory] http://secunia.com/advisories/32390

[Vendor Advisory] http://secunia.com/advisories/43362

[Various Sources] http://uvw.ru/report.lenny.txt

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2011-0266.html

[Vendor Advisory] http://www.ubuntu.com/usn/USN-875-1

[Vendor Advisory] http://www.vupen.com/english/advisories/2011/0419

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=460476

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44845

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00666.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30898

[Mailing List] http://www.openwall.com/lists/oss-security/2008/09/18/3

[Mailing List] http://www.openwall.com/lists/oss-security/2008/09/24/2

[Mailing List] http://www.openwall.com/lists/oss-security/2008/10/30/2

Scores

EPSS 0.0013

EPSS Percentile 32.4%

Details

CWE

CWE-59

Status published

Products (2)

redhat/cman 2.20080629

redhat/cman 2.20080801

Published Sep 29, 2008

Tracked Since Feb 18, 2026