7.2

CVE-2015-1338

Exploit
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Apport ProjectApport Version <= 2.18.1
CanonicalUbuntu Linux Version12.04 SwEditionlts
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version15.04
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.91% 0.553
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

http://packetstormsecurity.com/files/133723/Ubuntu-Apport-kernel_crashdump-Symlink.html
Exploit
http://seclists.org/fulldisclosure/2015/Sep/101
http://www.halfdog.net/Security/2015/ApportKernelCrashdumpFileAccessVulnerabilities/
Exploit
http://www.ubuntu.com/usn/USN-2744-1
https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1492570
https://launchpad.net/apport/trunk/2.19
Patch
https://www.exploit-db.com/exploits/38353/
Exploit