Fedora Security update Fixes suPHP Privilege Escalation Vulnerabilities

Fedora Security update Fixes suPHP Privilege Escalation Vulnerabilities

Rated as : Low Risk Remotely Exploitable : NoLocally Exploitable : YesRelease Date : 2008-04-03

Two vulnerabilities have been identified in Fedora, which could be exploited by malicious users to bypass security restrictions and gain elevated privileges. These issues are caused by errors in suPHP. For additional information, see : FrSIRT/ADV-2008-1073ChangeLog2008-04-03 : Initial release

  ****************   Title : suPHP Two Race Condition and Privilege Escalation VulnerabilitiesAdvisory ID : FrSIRT/ADV-2008-1073CVE ID : GENERIC-MAP-NOMATCHRated as : Low Risk Remotely Exploitable : NoLocally Exploitable : YesRelease Date : 2008-04-03 Two vulnerabilities have been identified in suPHP, which could be exploited by malicious users to bypass security restrictions and gain elevated privileges. These issues are caused by race condition errors when handling symlinks, which could allow local attackers to execute arbitrary code with elevated privileges.CreditsVulnerabilities reported by the vendor.ChangeLog2008-04-03 : Initial release

Döküman Arama

Başlık :

Kapat