CVE-2013-4419
published 2013-11-05CVE-2013-4419: The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the --remote or --listen option, does not properly check the ownership of…
medium6.8CVSS 3.1
AVAACHAuNCCICAC
The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the --remote or --listen option, does not properly check the ownership of /tmp/.guestfish-$UID/ when creating a temporary socket file in this directory, which allows local users to write to the socket and execute arbitrary commands by creating /tmp/.guestfish-$UID/ in advance.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libguestfs | < libguestfs 1:1.22.7-1 (bookworm) | libguestfs 1:1.22.7-1 (bookworm) |
| libguestfs | libguestfs | >= 0 < 1:1.22.7-1 | 1:1.22.7-1 |
| libguestfs | libguestfs | >= 0 < 1:1.22.7-1 | 1:1.22.7-1 |
| libguestfs | libguestfs | >= 0 < 1:1.22.7-1 | 1:1.22.7-1 |
| libguestfs | libguestfs | >= 0 < 1:1.22.7-1 | 1:1.22.7-1 |
| libguestfs | libguestfs | 1.20.0 – 1.20.12 | — |
| libguestfs | libguestfs | 1.22.0 – 1.22.7 | — |
| novell | suse_linux_enterprise_server | — | — |
| suse | suse_linux_enterprise_software_development_kit | — | — |
CVSS provenance
nvd6.8MEDIUMAV:A/AC:H/Au:N/C:C/I:C/A:C
osv6.8MEDIUM