Vulnerability Name:

CVE-2008-5377 (CCN-47249)

Assigned:2008-08-13
Published:2008-08-13
Updated:2017-09-29
Summary:pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333.
CVSS v3 Severity:5.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.7 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:H/RL:OF/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
3.3 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-59
Vulnerability Consequences:File Manipulation
References:Source: MITRE
Type: CNA
CVE-2008-5377

Source: CCN
Type: debian-devel Mailing List, Wed, 13 Aug 2008 22:21:55 +0400
Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages

Source: MLIST
Type: UNKNOWN
[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages

Source: CCN
Type: CUPS Web page
Common UNIX Printing System(tm) - server

Source: MISC
Type: Exploit
http://uvw.ru/report.sid.txt

Source: CCN
Type: BID-32745
CUPS 'pstopdf' Insecure Temporary File Creation Vulnerability

Source: CCN
Type: USN-707-1
CUPS vulnerabilities

Source: XF
Type: UNKNOWN
cups-pstopdf-symlink(47249)

Source: EXPLOIT-DB
Type: UNKNOWN
7550

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apple:cups:1.3.8:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:apple:cups:1.3.8:*:*:*:*:*:*:*
  • AND
  • cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.10:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:8.04::lts:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:13871
    P
    		USN-707-1 -- cups, cupsys vulnerabilities
    2014-06-30
    BACK
    apple cups 1.3.8
    apple cups 1.3.8
    canonical ubuntu 6.06
    canonical ubuntu 7.10
    canonical ubuntu 8.04