CVE-2009-1297
published 2009-10-23CVE-2009-1297: iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users…
PriorityP416medium4.4CVSS 2.0
AVLACMAuNCPIPAP
EPSS
0.34%
25.5th percentile
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | open-iscsi | < open-iscsi 2.0.871-1 (bookworm) | open-iscsi 2.0.871-1 (bookworm) |
| novell | suse_linux | — | — |
| novell | suse_linux | — | — |
| open-iscsi_project | open-iscsi | >= 0 < 2.0.871-1 | 2.0.871-1 |
| open-iscsi_project | open-iscsi | >= 0 < 2.0.871-1 | 2.0.871-1 |
| open-iscsi_project | open-iscsi | >= 0 < 2.0.871-1 | 2.0.871-1 |
| open-iscsi_project | open-iscsi | >= 0 < 2.0.871-1 | 2.0.871-1 |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
CVSS provenance
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv4.4MEDIUM
vendor_debian4.4LOW
vendor_redhat4.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Open-iSCSI vulnerability
vendor_ubuntu·2011-10-20
CVE-2009-1297 Open-iSCSI vulnerability
Title: Open-iSCSI vulnerability
Summary: iscsi_discovery in open-iscsi could be made to overwrite files as the
administrator.
Colin Watson discovered that iscsi_discovery in Open-iSCSI did not safely
create temporary files. A local attacker could exploit this to to overwrite
arbitrary files with root privileges.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
iscsi-initiator-utils: unsafe tmp file use in iscsi_discovery script
vendor_redhat·2009-08-11·CVSS 4.4
CVE-2009-1297 [MEDIUM] iscsi-initiator-utils: unsafe tmp file use in iscsi_discovery script
iscsi-initiator-utils: unsafe tmp file use in iscsi_discovery script
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.
Debian
CVE-2009-1297: open-iscsi - iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux ...
vendor_debian·2009·CVSS 4.4
CVE-2009-1297 [MEDIUM] CVE-2009-1297: open-iscsi - iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux ...
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.
Scope: local
bookworm: resolved (fixed in 2.0.871-1)
bullseye: resolved (fixed in 2.0.871-1)
forky: resolved (fixed in 2.0.871-1)
sid: resolved (fixed in 2.0.871-1)
trixie: resolved (fixed in 2.0.871-1)
GHSA
GHSA-ph28-8h48-j3qp: iscsi_discovery in open-iscsi in SUSE openSUSE 10
ghsa_unreviewed·2022-05-02
CVE-2009-1297 [MEDIUM] CWE-59 GHSA-ph28-8h48-j3qp: iscsi_discovery in open-iscsi in SUSE openSUSE 10
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.
OSV
CVE-2009-1297: iscsi_discovery in open-iscsi in SUSE openSUSE 10
osv·2009-10-23·CVSS 4.4
CVE-2009-1297 [MEDIUM] CVE-2009-1297: iscsi_discovery in open-iscsi in SUSE openSUSE 10
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2013:109https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0241http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2013:109https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0241
2009-10-23
Published