1. Home
  2. CVE Database
  3. CVE-2008-5379
MEDIUM · 6.9

CVE-2008-5379

netdisco-mibs-installer 1.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/netdisco-mibs-0.6.tar.gz temporary file, related to the (1) netdisco-mibs-install and (2) n...

Vulnerability Description

netdisco-mibs-installer 1.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/netdisco-mibs-0.6.tar.gz temporary file, related to the (1) netdisco-mibs-install and (2) netdisco-mibs-download scripts.

CVSS Score

6.9

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
Oliver GorwitsNetdisco Mibs Installer1.0

Related Weaknesses (CWE)

CWE-59

References

FAQ

What is CVE-2008-5379?

CVE-2008-5379 is a vulnerability with a CVSS score of 6.9 (MEDIUM). netdisco-mibs-installer 1.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/netdisco-mibs-0.6.tar.gz temporary file, related to the (1) netdisco-mibs-install and (2) n...

How severe is CVE-2008-5379?

CVE-2008-5379 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-5379?

Check the references section above for vendor advisories and patch information. Affected products include: Oliver Gorwits Netdisco Mibs Installer.