CVE-2012-2103
published 2012-08-26CVE-2012-2103: The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
PriorityP48low1.2CVSS 2.0
AVLACHAuNCNIPAN
EPSS
0.33%
24.9th percentile
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | munin | < munin 2.0~rc6-1 (bookworm) | munin 2.0~rc6-1 (bookworm) |
| munin-monitoring | munin | — | — |
| munin-monitoring | munin | >= 0 < 2.0~rc6-1 | 2.0~rc6-1 |
| munin-monitoring | munin | >= 0 < 2.0~rc6-1 | 2.0~rc6-1 |
| munin-monitoring | munin | >= 0 < 2.0~rc6-1 | 2.0~rc6-1 |
| munin-monitoring | munin | >= 0 < 2.0~rc6-1 | 2.0~rc6-1 |
CVSS provenance
nvdv2.01.2LOWAV:L/AC:H/Au:N/C:N/I:P/A:N
osv1.2LOW
vendor_debian1.2LOW
vendor_ubuntu1.2LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Munin vulnerabilities
vendor_ubuntu·2012-11-05·CVSS 1.2
CVE-2012-2103 [LOW] Munin vulnerabilities
Title: Munin vulnerabilities
Summary: Several security issues were fixed in Munin.
It was discovered that the Munin qmailscan plugin incorrectly handled
temporary files. A local attacker could use this issue to possibly
overwrite arbitrary files. This issue only affected Ubuntu 10.04 LTS,
Ubuntu 11.10, and Ubuntu 12.04 LTS. (CVE-2012-2103)
It was discovered that Munin incorrectly handled plugin state file
permissions. An attacker obtaining privileges of the munin user could use
this issue to escalate privileges to root. (CVE-2012-3512)
It was discovered that Munin incorrectly handled specifying an alternate
configuration file. A remote attacker could possibly use this issue to
execute arbitrary code with the privileges of the web server. This issue
only affected Ubuntu 12.10. (CVE-2012
Debian
CVE-2012-2103: munin - The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary f...
vendor_debian·2012·CVSS 1.2
CVE-2012-2103 [LOW] CVE-2012-2103: munin - The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary f...
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
Scope: local
bookworm: resolved (fixed in 2.0~rc6-1)
bullseye: resolved (fixed in 2.0~rc6-1)
forky: resolved (fixed in 2.0~rc6-1)
sid: resolved (fixed in 2.0~rc6-1)
trixie: resolved (fixed in 2.0~rc6-1)
GHSA
GHSA-wp9g-5pp9-hxcm: The qmailscan plugin for Munin 1
ghsa_unreviewed·2022-05-17
CVE-2012-2103 [LOW] CWE-59 GHSA-wp9g-5pp9-hxcm: The qmailscan plugin for Munin 1
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
OSV
CVE-2012-2103: The qmailscan plugin for Munin 1
osv·2012-08-26·CVSS 1.2
CVE-2012-2103 [LOW] CVE-2012-2103: The qmailscan plugin for Munin 1
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
No detection rules found.
No public exploits indexed.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668778http://secunia.com/advisories/48859http://secunia.com/advisories/51218http://www.openwall.com/lists/oss-security/2012/04/16/5http://www.openwall.com/lists/oss-security/2012/04/16/6http://www.securityfocus.com/bid/53031http://www.ubuntu.com/usn/USN-1622-1https://bugzilla.redhat.com/show_bug.cgi?id=812889https://exchange.xforce.ibmcloud.com/vulnerabilities/74884http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668778http://secunia.com/advisories/48859http://secunia.com/advisories/51218http://www.openwall.com/lists/oss-security/2012/04/16/5http://www.openwall.com/lists/oss-security/2012/04/16/6http://www.securityfocus.com/bid/53031http://www.ubuntu.com/usn/USN-1622-1https://bugzilla.redhat.com/show_bug.cgi?id=812889https://exchange.xforce.ibmcloud.com/vulnerabilities/74884
2012-08-26
Published