CVE-2008-2958

Race condition in (1) checkinstall 1.6.1 and (2) installwatch allows local users to overwrite arbitrary files and have other impacts via symlink and possibly other attacks on temporary working directories.

CVSS v2.0 4.4 MEDIUM

4.4^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 3.4 / Impact : 6.4

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140
http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html	Exploit
http://secunia.com/advisories/30873	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/43440
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140
http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html	Exploit
http://secunia.com/advisories/30873	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/43440

Configurations

Configuration 1 (hide)

cpe:2.3:a:checkinstall:checkinstall:1.6.1:*:*:*:*:*:*:*

History

21 Nov 2024, 00:48

Type	Values Removed	Values Added
References	~~() http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140 -~~	() http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140 -
References	~~() http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html - Exploit~~	() http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html - Exploit
References	~~() http://secunia.com/advisories/30873 - Vendor Advisory~~	() http://secunia.com/advisories/30873 - Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/43440 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/43440 -

Information

Published : 2008-07-01 22:41

Updated : 2025-04-09 00:30

NVD link : CVE-2008-2958

Mitre link : CVE-2008-2958

CVE.ORG link : CVE-2008-2958

JSON object : View

Products Affected

checkinstall

checkinstall

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

{"id": "CVE-2008-2958", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.4, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2008-07-01T22:41:00.000", "references": [{"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140", "source": "cve@mitre.org"}, {"url": "http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/30873", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43440", "source": "cve@mitre.org"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488140", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.alioth.debian.org/pipermail/secure-testing-team/2008-June/001672.html", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/30873", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43440", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "Race condition in (1) checkinstall 1.6.1 and (2) installwatch allows local users to overwrite arbitrary files and have other impacts via symlink and possibly other attacks on temporary working directories."}, {"lang": "es", "value": "Condici\u00f3n de carrera en (1)checkinstall 1.6.1 y (2) installwatch, permite a usuarios locales sobrescribir ficheros de su elecci\u00f3n y tener otro tipo de impacto a trav\u00e9s de un enlace simb\u00f3lico y posiblemente otro tipo de ataques sobre directorios temporales de trabajo."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:checkinstall:checkinstall:1.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7394122F-C484-407B-A713-DA17E65D8602"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}