CVE-2008-0890

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2008-0890
Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/29350
http://www.redhat.com/support/errata/RHSA-2008-0173.html
http://www.securityfocus.com/bid/28204
http://www.securitytracker.com/id?1019577
https://exchange.xforce.ibmcloud.com/vulnerabilities/41152
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:directory_server:*:sp3:*:*:*:*:*:*
History

No history.

Information

Published : 2008-03-12 00:44

Updated : 2024-02-28 11:01

NVD link : CVE-2008-0890

Mitre link : CVE-2008-0890

CVE.ORG link : CVE-2008-0890

JSON object : View

Products Affected

redhat

  • directory_server
CWE
CWE-264

Permissions, Privileges, and Access Controls


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024