3.7

CVE-2013-0219

System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user's files.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FedoraprojectSssd Version <= 1.9.3
FedoraprojectSssd Version0.2.1
FedoraprojectSssd Version0.3.0
FedoraprojectSssd Version0.3.1
FedoraprojectSssd Version0.3.2
FedoraprojectSssd Version0.3.3
FedoraprojectSssd Version0.4.0
FedoraprojectSssd Version0.4.1
FedoraprojectSssd Version0.5.0
FedoraprojectSssd Version0.6.0
FedoraprojectSssd Version0.6.1
FedoraprojectSssd Version0.7.0
FedoraprojectSssd Version0.7.1
FedoraprojectSssd Version0.99.0
FedoraprojectSssd Version0.99.1
FedoraprojectSssd Version1.0.0
FedoraprojectSssd Version1.0.1
FedoraprojectSssd Version1.0.2
FedoraprojectSssd Version1.0.3
FedoraprojectSssd Version1.0.4
FedoraprojectSssd Version1.0.5
FedoraprojectSssd Version1.0.6
FedoraprojectSssd Version1.0.99
FedoraprojectSssd Version1.1.0
FedoraprojectSssd Version1.1.1
FedoraprojectSssd Version1.1.2
FedoraprojectSssd Version1.1.91
FedoraprojectSssd Version1.1.92
FedoraprojectSssd Version1.2.0
FedoraprojectSssd Version1.2.1
FedoraprojectSssd Version1.2.2
FedoraprojectSssd Version1.2.3
FedoraprojectSssd Version1.2.4
FedoraprojectSssd Version1.2.91
FedoraprojectSssd Version1.3.0
FedoraprojectSssd Version1.3.1
FedoraprojectSssd Version1.4.0
FedoraprojectSssd Version1.4.1
FedoraprojectSssd Version1.5.0
FedoraprojectSssd Version1.5.1
FedoraprojectSssd Version1.5.2
FedoraprojectSssd Version1.5.3
FedoraprojectSssd Version1.5.4
FedoraprojectSssd Version1.5.5
FedoraprojectSssd Version1.5.6
FedoraprojectSssd Version1.5.6.1
FedoraprojectSssd Version1.5.7
FedoraprojectSssd Version1.5.8
FedoraprojectSssd Version1.5.9
FedoraprojectSssd Version1.5.10
FedoraprojectSssd Version1.5.11
FedoraprojectSssd Version1.5.12
FedoraprojectSssd Version1.5.13
FedoraprojectSssd Version1.5.14
FedoraprojectSssd Version1.5.15
FedoraprojectSssd Version1.5.16
FedoraprojectSssd Version1.5.17
FedoraprojectSssd Version1.6.0
FedoraprojectSssd Version1.6.1
FedoraprojectSssd Version1.6.2
FedoraprojectSssd Version1.6.3
FedoraprojectSssd Version1.6.4
FedoraprojectSssd Version1.7.0
FedoraprojectSssd Version1.8.0
FedoraprojectSssd Version1.8.0 Updatebeta1
FedoraprojectSssd Version1.8.0 Updatebeta2
FedoraprojectSssd Version1.8.0 Updatebeta3
FedoraprojectSssd Version1.8.1
FedoraprojectSssd Version1.8.2
FedoraprojectSssd Version1.8.3
FedoraprojectSssd Version1.8.4
FedoraprojectSssd Version1.8.5
FedoraprojectSssd Version1.8.6
FedoraprojectSssd Version1.9.0
FedoraprojectSssd Version1.9.1
FedoraprojectSssd Version1.9.2
RedhatEnterprise Linux Version5
RedhatEnterprise Linux Version6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.37% 0.282
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.7 1.9 6.4
AV:L/AC:H/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://git.fedorahosted.org/cgit/sssd.git/commit/?id=020bf88fd1c5bdac8fc671b37c7118f5378c7047
http://git.fedorahosted.org/cgit/sssd.git/commit/?id=3843b284cd3e8f88327772ebebc7249990fd87b9
http://git.fedorahosted.org/cgit/sssd.git/commit/?id=94cbf1cfb0f88c967f1fb0a4cf23723148868e4a
http://git.fedorahosted.org/cgit/sssd.git/commit/?id=e864d914a44a37016736554e9257c06b18c57d37
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098434.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098613.html
http://rhn.redhat.com/errata/RHSA-2013-0508.html
http://rhn.redhat.com/errata/RHSA-2013-1319.html
http://secunia.com/advisories/51928
Vendor Advisory
http://secunia.com/advisories/52315
Vendor Advisory
http://www.securityfocus.com/bid/57539
https://bugzilla.redhat.com/show_bug.cgi?id=884254
https://fedorahosted.org/sssd/ticket/1782
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.4