CVE-2014-5284 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2014-5284?

CVE-2014-5284 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-5284?

Check the references section above for vendor advisories and patch information. Affected products include: Ossec Ossec.

Vulnerability Description

host-deny.sh in OSSEC before 2.8.1 writes to temporary files with predictable filenames without verifying ownership, which allows local users to modify access restrictions in hosts.deny and gain root privileges by creating the temporary files before automatic IP blocking is performed.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Ossec	Ossec	<= 2.8.0

Related Weaknesses (CWE)

CWE-264

References

http://packetstormsecurity.com/files/129111/OSSEC-2.8-Privilege-Escalation.htmlExploit
http://www.exploit-db.com/exploits/35234Exploit
https://github.com/ossec/ossec-hids/releases/tag/2.8.1PatchVendor Advisory
http://packetstormsecurity.com/files/129111/OSSEC-2.8-Privilege-Escalation.htmlExploit
http://www.exploit-db.com/exploits/35234Exploit
https://github.com/ossec/ossec-hids/releases/tag/2.8.1PatchVendor Advisory

FAQ

What is CVE-2014-5284?

CVE-2014-5284 is a vulnerability with a CVSS score of 7.2 (HIGH). host-deny.sh in OSSEC before 2.8.1 writes to temporary files with predictable filenames without verifying ownership, which allows local users to modify access restrictions in hosts.deny and gain root ...

How severe is CVE-2014-5284?

CVE-2014-5284 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-5284?

Check the references section above for vendor advisories and patch information. Affected products include: Ossec Ossec.