CVE-2004-0108

Published Apr 15, 2004

Last updated 7 years ago

CVSS info 4.6

Overview

Description: The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:sysstat:4.0.7-3:*:i386:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD0995DA-F1DF-433D-A97B-1D02570ED787"
          },
          {
            "criteria": "cpe:2.3:a:sgi:propack:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26430687-409B-448F-934B-06AB937DDF63"
          },
          {
            "criteria": "cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0702A32E-E577-403C-B4D9-15037D7100A5"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "128E5519-B592-4A74-A0AE-70FF6C758E92"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF8EA77A-0502-4CE1-8AF6-B9FCE3A3B61A"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44DF02DE-E9E2-48FB-ADEB-86CD6BFD6AF1"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F593D32F-D836-4CC6-B597-6847889CDB59"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "816C2A5C-06BE-4DFB-8982-1A9FCE5FA6D7"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A2198E1-5725-410B-B7E7-35749CA32A4B"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBE7138C-0258-4306-88EE-852CF9EF6605"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:4.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "496B269B-8B6D-44DF-BCC1-CF48C85B3B18"
          },
          {
            "criteria": "cpe:2.3:a:sysstat:sysstat:5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DA6DACA-FC70-475F-8585-1799D5F74386"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References