CVE Vulnerabilities

CVE-2008-6552

Improper Link Resolution Before File Access ('Link Following')

Published: Mar 30, 2009 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.9 MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
5.4 LOW
AV:L/AC:M/Au:N/C:N/I:P/A:C
RedHat/V3
Ubuntu

Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) before 2.03.09-1, gfs2-utils before 2.03.09-1, and CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9.

Weakness

The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Affected Software

Name Vendor Start Version End Version
Cluster_project Redhat 2.00.00 2.00.00
Cluster_project Redhat 2.01.00 2.01.00
Cluster_project Redhat 2.02.00 2.02.00
Cluster_project Redhat 2.03.00 2.03.00
Cluster_project Redhat 2.03.01 2.03.01
Cluster_project Redhat 2.03.03 2.03.03
Cluster_project Redhat 2.03.04 2.03.04
Cluster_project Redhat 2.03.05 2.03.05
Cluster_project Redhat 2.03.7 2.03.7
Cluster_project Redhat 2.03.08 2.03.08
Cluster_project Redhat 2.03.09 2.03.09
Cluster_project Redhat 2.03.10 2.03.10
Cluster_project Redhat 2.03.11 2.03.11
Cluster_project Redhat 2.99.00 2.99.00
Cluster_project Redhat 2.99.01 2.99.01
Cluster_project Redhat 2.99.02 2.99.02
Cluster_project Redhat 2.99.03 2.99.03
Cluster_project Redhat 2.99.04 2.99.04
Cluster_project Redhat 2.99.05 2.99.05
Cluster_project Redhat 2.99.06 2.99.06
Cluster_project Redhat 2.99.07 2.99.07
Cluster_project Redhat 2.99.08 2.99.08
Cluster_project Redhat 2.99.09 2.99.09
Cluster_project Redhat 2.99.10 2.99.10
Cluster_project Redhat 2.99.11 2.99.11
Cluster_project Redhat 2.99.12 2.99.12
Cluster_project Redhat 2.99.13 2.99.13
CLuster Suite for RHEL 4 RedHat rgmanager-0:1.9.88-2.el4 *
CLuster Suite for RHEL 4 RedHat ccs-0:1.0.13-2 *
Red Hat Enterprise Linux 5 RedHat rgmanager-0:2.0.52-1.el5 *
Red Hat Enterprise Linux 5 RedHat gfs2-utils-0:0.1.62-1.el5 *
Red Hat Enterprise Linux 5 RedHat cman-0:2.0.115-1.el5 *
Redhat-cluster Ubuntu hardy *
Redhat-cluster Ubuntu intrepid *
Redhat-cluster-suite Ubuntu dapper *
Redhat-cluster-suite Ubuntu gutsy *

Potential Mitigations

  • Follow the principle of least privilege when assigning access rights to entities in a software system.
  • Denying access to a file can prevent an attacker from replacing that file with a link to a sensitive file. Ensure good compartmentalization in the system to provide protected areas that can be trusted.

References