CVE-2007-3919

Loading...

General

Score:6.0/10.0
Severity:Medium
Category:Path Manipulation
Exploit:Available

Impact Metrics

Confidentiality:None
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Medium
Authentication:Single

Relative vulnerabilities

CVE-2007-5730, CVE-2008-0928, CVE-2008-1943, CVE-2008-1944, CVE-2008-2004

Published on 28/10/07 - Updated on 29/09/17

Description

(1) xenbaked and (2) xenmon.py in Xen 3.1 and earlier allow local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm.

Category: Path Manipulation

CWE-59 (Link Following)
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Security Notices

US National Vulnerability DatabaseCVE-2007-3919
CentOS CESA-2008:0194
Redhat RHSA-2008:0194

Exploits

SecurityFocusBID-26190

Relative technologies

VendorProduct
xensource_incxen

Share this vulnerability with:

Twitter Facebook LinkedIn Mail