CVE-2008-1951
Description
Untrusted search path vulnerability in a certain Red Hat build script for Standards Based Linux Instrumentation for Manageability (sblim) libraries before 1-13a.el4_6.1 in Red Hat Enterprise Linux (RHEL) 4, and before 1-31.el5_2.1 in RHEL 5, allows local users to gain privileges via a malicious library in a certain subdirectory of /var/tmp, related to an incorrect RPATH setting, as demonstrated by a malicious libc.so library for tog-pegasus.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.123
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-1.3.3-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-1.3.3-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-javadoc-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-javadoc-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-manual-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cim-client-manual-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-1.5.5-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-1.5.5-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-devel-1.5.5-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-devel-1.5.5-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-test-1.5.5-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-base-test-1.5.5-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-devel-1.0.4-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-devel-1.0.4-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-0.5.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-0.5.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-devel-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-devel-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-test-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-dns-test-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-1.4.4-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-1.4.4-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-devel-1.4.4-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-devel-1.4.4-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-test-1.4.4-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-fsvol-test-1.4.4-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-1.3.8-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-1.3.8-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-devel-1.3.8-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-devel-1.3.8-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-test-1.3.8-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-network-test-1.3.8-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv3-1.0.14-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv3-1.0.14-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv3-test-1.0.14-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv3-test-1.0.14-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv4-1.0.12-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv4-1.0.12-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv4-test-1.0.12-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-nfsv4-test-1.0.12-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-params-1.2.6-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-params-1.2.6-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-params-test-1.2.6-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-params-test-1.2.6-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-0.5.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-0.5.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-devel-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-devel-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-test-1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-samba-test-1-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-sysfs-1.1.9-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-sysfs-1.1.9-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-sysfs-test-1.1.9-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-sysfs-test-1.1.9-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-syslog-0.7.11-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-syslog-0.7.11-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-syslog-test-0.7.11-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-cmpi-syslog-test-0.7.11-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-2.1.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-2.1.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-devel-2.1.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-devel-2.1.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-provider-2.1.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-provider-2.1.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-test-2.1.2-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-gather-test-2.1.2-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-testsuite-1.2.4-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-testsuite-1.2.4-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-tools-libra-0.2.3-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-tools-libra-0.2.3-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-tools-libra-devel-0.2.3-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-tools-libra-devel-0.2.3-31.el5_2.1.x86_64.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-wbemcli-1.5.1-31.el5_2.1.i386.rpm | Linux |
| (RHSA-2008:0497) Important: sblim security update sblim-wbemcli-1.5.1-31.el5_2.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234