CVE-2007-4998 — Link Following in Coreutils

CWE-59 — Link Following7 documents7 sources

Severity

6.9MEDIUMNVD

EPSS

0.1%

top 74.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Coreutils Debian Coreutils Msrc CBL Mariner 1.0 ARM +1 more

Timeline

PublishedJan 31

Latest updateMay 1

Description

cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same destination.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages4 packages

▶debiandebian/coreutils< coreutils 4.1.2 (bookworm)

▶Debiangnu/coreutils< 4.1.2+3

▶msrcmsrc/cbl_mariner_1.0_arm

▶msrcmsrc/cbl_mariner_1.0_x64

🔴Vulnerability Details

GHSA

GHSA-4337-x4h9-rx8j: cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlin↗2022-05-01

▶

OSV

CVE-2007-4998: cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlin↗2008-01-31

▶

📋Vendor Advisories

Microsoft

CVE-2007-4998: NIST NVD Details: https://nvd↗2020-09-08

▶

Red Hat

cp symlink overwrite↗2008-01-22

▶

Debian

CVE-2007-4998: coreutils - cp, when running with an option to preserve symlinks on multiple OSes, allows lo...↗2007

▶

💬Community

Bugzilla

CVE-2007-4998 cp symlink overwrite↗2007-10-29

▶