CVE-2008-4476 — Link Following in Sympa

CWE-59 — Link Following5 documents5 sources

Severity

6.9MEDIUMNVD

EPSS

0.0%

top 93.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sympa Debian Sympa

Timeline

PublishedOct 7

Latest updateMay 2

Description

sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympa_aliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages3 packages

▶debiandebian/sympa< sympa 5.3.4-5.1 (bookworm)

▶Debiansympa/sympa< 5.3.4-5.1+3

▶NVDsympa/sympa5.3.4

🔴Vulnerability Details

GHSA

GHSA-pqwf-5w9g-43wg: sympa↗2022-05-02

▶

OSV

CVE-2008-4476: sympa↗2008-10-07

▶

💥Exploits & PoCs

Exploit-DB

shibby shop 2.2 - Multiple Vulnerabilities↗2008-06-22

▶

📋Vendor Advisories

Debian

CVE-2008-4476: sympa - sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a sy...↗2008

▶