Vulnerability Name:

CVE-2008-1614 (CCN-41582)

Assigned:2008-03-30
Published:2008-03-30
Updated:2017-08-08
Summary:suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.
Addition information can be found at:

http://secunia.com/advisories/29615/


CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P)
3.2 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-264
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: gmane Newsgroup, 2008-03-30 13:58:22 GMT
SECURITY ISSUE: Immediate update advised

Source: MITRE
Type: CNA
CVE-2008-1614

Source: MLIST
Type: UNKNOWN
[suPHP] 20080330 SECURITY ISSUE: Immediate update advised

Source: CCN
Type: SA29615
suPHP Race Condition Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
29615

Source: SECUNIA
Type: UNKNOWN
29648

Source: SECUNIA
Type: UNKNOWN
29872

Source: DEBIAN
Type: UNKNOWN
DSA-1550

Source: DEBIAN
Type: DSA-1550
suphp -- programming error

Source: CCN
Type: OSVDB ID: 43993
suPHP for Apache (mod_suphp) Owner Mode Race Condition Symlink Local Privilege Escalation

Source: CCN
Type: OSVDB ID: 43994
suPHP for Apache (mod_suphp) Directory Symlink Local Privilege Escalation

Source: BID
Type: UNKNOWN
28568

Source: CCN
Type: BID-28568
suPHP Multiple Local Privilege Escalation Vulnerabilities

Source: CCN
Type: suPHP Web site
suPHP - Download

Source: VUPEN
Type: UNKNOWN
ADV-2008-1073

Source: MISC
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=439687

Source: XF
Type: UNKNOWN
suphp-files-privilege-escalation(41582)

Source: XF
Type: UNKNOWN
suphp-files-privilege-escalation(41582)

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-2815

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-2868

Vulnerable Configuration:Configuration 1:
  • cpe:/a:sebastian_marsching:suphp:*:*:*:*:*:*:*:* (Version <= 0.6.2)

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:8236
    P
    		DSA-1550 suphp -- programming error
    2014-06-23
    oval:org.mitre.oval:def:20183
    P
    		DSA-1550-1 suphp
    2014-06-23
    oval:org.debian:def:1550
    V
    		programming error
    2008-04-17
    BACK
    sebastian_marsching suphp *