CVE-2008-4190
published 2008-09-24CVE-2008-4190: The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code…
PriorityP422medium4.4CVSS 2.0
AVLACMAuNCPIPAP
EXPLOIT
EPSS
1.11%
61.9th percentile
The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream version, this tool has been disabled.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| openswan | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
| xelerance | openswan | — | — |
CVSS provenance
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat4.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
openswan: Insecure auxiliary /tmp file usage (symlink attack possible)
vendor_redhat·2008-08-24·CVSS 4.4
CVE-2008-4190 [MEDIUM] openswan: Insecure auxiliary /tmp file usage (symlink attack possible)
openswan: Insecure auxiliary /tmp file usage (symlink attack possible)
The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream version, this tool has been disabled.
GHSA
GHSA-pqmw-hq69-w92w: The IPSEC livetest tool in Openswan 2
ghsa_unreviewed·2022-05-02
CVE-2008-4190 [MEDIUM] CWE-59 GHSA-pqmw-hq69-w92w: The IPSEC livetest tool in Openswan 2
The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream version, this tool has been disabled.
No detection rules found.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374http://dev.gentoo.org/~rbu/security/debiantemp/openswanhttp://secunia.com/advisories/34182http://secunia.com/advisories/34472http://www.debian.org/security/2009/dsa-1760http://www.openwall.com/lists/oss-security/2008/10/30/2http://www.redhat.com/support/errata/RHSA-2009-0402.htmlhttp://www.securityfocus.com/archive/1/501624/100/0/threadedhttp://www.securityfocus.com/archive/1/501640/100/0/threadedhttp://www.securityfocus.com/bid/31243https://bugs.gentoo.org/show_bug.cgi?id=235770https://bugzilla.redhat.com/show_bug.cgi?id=460425https://exchange.xforce.ibmcloud.com/vulnerabilities/45250https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078https://www.exploit-db.com/exploits/9135http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374http://dev.gentoo.org/~rbu/security/debiantemp/openswanhttp://secunia.com/advisories/34182http://secunia.com/advisories/34472http://www.debian.org/security/2009/dsa-1760http://www.openwall.com/lists/oss-security/2008/10/30/2http://www.redhat.com/support/errata/RHSA-2009-0402.htmlhttp://www.securityfocus.com/archive/1/501624/100/0/threadedhttp://www.securityfocus.com/archive/1/501640/100/0/threadedhttp://www.securityfocus.com/bid/31243https://bugs.gentoo.org/show_bug.cgi?id=235770https://bugzilla.redhat.com/show_bug.cgi?id=460425https://exchange.xforce.ibmcloud.com/vulnerabilities/45250https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078https://www.exploit-db.com/exploits/9135
2008-09-24
Published