CVE-2008-1078: High severity rpath linux vulnerability

Published Feb 29, 2008

Updated

expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite arbitrary files via a symlink attack on the expn[PID] temporary file. NOTE: this is the same issue as CVE-2003-0308.1.

Affected Software

2 affected components

rPath rPath Linux

Gentoo Linux

Event History

Feb 29, 2008

CVE Published

via MITRE·02:00 AM

Data Sourced

via MITRE·02:00 AM

Description

Frequently Asked Questions

What is the severity of CVE-2008-1078?

CVE-2008-1078 is classified as a medium severity vulnerability due to the potential impact of local users overwriting arbitrary files.

How do I fix CVE-2008-1078?

To fix CVE-2008-1078, update the am-utils and net-fs packages to the latest versions provided by your distribution.

Who is affected by CVE-2008-1078?

CVE-2008-1078 affects users of Gentoo Linux, Rpath Linux, and other distributions that utilize the vulnerable am-utils and net-fs packages.

What kind of attack is associated with CVE-2008-1078?

CVE-2008-1078 is associated with a symlink attack that allows local users to exploit temporary file handling.

Is CVE-2008-1078 a known issue?

Yes, CVE-2008-1078 is a known vulnerability that is also documented as the same issue as CVE-2003-0308.

CVE-2008-1078: High severity rpath linux vulnerability

Affected Software

Event History

Don't miss critical vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2008-1078?

How do I fix CVE-2008-1078?

Who is affected by CVE-2008-1078?

What kind of attack is associated with CVE-2008-1078?

Is CVE-2008-1078 a known issue?

Company

Resources

Contact