{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-08-24T00:00:00", "descriptions": [{"lang": "en", "value": "The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files.  NOTE: in many distributions and the upstream version, this tool has been disabled."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "34472", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/34472"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, {"name": "[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2008/10/30/2"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugs.gentoo.org/show_bug.cgi?id=235770"}, {"name": "20090309 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/501624/100/0/threaded"}, {"name": "34182", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/34182"}, {"name": "20090310 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/501640/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:10078", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan"}, {"name": "31243", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/31243"}, {"name": "9135", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/9135"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374"}, {"name": "RHSA-2009:0402", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2009-0402.html"}, {"name": "openswan-livetest-symlink(45250)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45250"}, {"name": "DSA-1760", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2009/dsa-1760"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-4190", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files.  NOTE: in many distributions and the upstream version, this tool has been disabled."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "34472", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34472"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=460425", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, {"name": "[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2008/10/30/2"}, {"name": "https://bugs.gentoo.org/show_bug.cgi?id=235770", "refsource": "CONFIRM", "url": "https://bugs.gentoo.org/show_bug.cgi?id=235770"}, {"name": "20090309 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/501624/100/0/threaded"}, {"name": "34182", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34182"}, {"name": "20090310 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/501640/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:10078", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078"}, {"name": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan", "refsource": "CONFIRM", "url": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan"}, {"name": "31243", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31243"}, {"name": "9135", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/9135"}, {"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374", "refsource": "CONFIRM", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374"}, {"name": "RHSA-2009:0402", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-0402.html"}, {"name": "openswan-livetest-symlink(45250)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45250"}, {"name": "DSA-1760", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2009/dsa-1760"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T10:08:34.945Z"}, "title": "CVE Program Container", "references": [{"name": "34472", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/34472"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, {"name": "[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2008/10/30/2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugs.gentoo.org/show_bug.cgi?id=235770"}, {"name": "20090309 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/501624/100/0/threaded"}, {"name": "34182", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/34182"}, {"name": "20090310 Re: [ GLSA 200903-18 ] Openswan: Insecure temporary file creation", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/501640/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:10078", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan"}, {"name": "31243", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/31243"}, {"name": "9135", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/9135"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374"}, {"name": "RHSA-2009:0402", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2009-0402.html"}, {"name": "openswan-livetest-symlink(45250)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45250"}, {"name": "DSA-1760", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2009/dsa-1760"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-4190", "datePublished": "2008-09-24T10:00:00", "dateReserved": "2008-09-23T00:00:00", "dateUpdated": "2024-08-07T10:08:34.945Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:openswan:openswan:1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "83BD9C38-8D11-4A21-9A80-83D4D02ECC3C", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "7BF7EA37-F5B2-4EBE-A959-29F559A47F47", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "6C062450-8D41-4E0C-AEAD-6C51D9B8F107", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:1.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "4D15B299-2298-4617-8CED-5F98C2E68D07", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:1.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "F7FA0C68-A45A-42EB-9F1F-E911F32589BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:1.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "411E9D06-5756-4918-965C-3E83890F0316", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "3A9EABDE-514F-42BA-A335-135209605981", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "2425AF51-C42B-4EAA-A619-EE47EAFCBA83", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "892D939B-4649-4B90-A2C0-6C2E4DDF7DFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "1A321B57-5E08-48C8-9288-A92342770FD1", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "54780B50-9CFE-43B6-8BB9-C7246F817773", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "001E2700-CE33-495A-8F8A-81E2E550CFF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:openswan:openswan:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "6A628FE6-A042-4DF9-A141-8BE65FD236C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "112D7B10-50E4-4903-9E34-DB4857D6C658", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "F7841F42-1226-43C4-A007-88847925D872", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "77930F86-13FF-4787-A39F-2D00110AFBFC", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "7B1ADD64-2503-4EED-9F6F-E425A3406123", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "A3067BE9-4314-42BD-8131-89C4899F7D47", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "E00CA6E5-1F63-4D59-BA72-0F8697671718", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "C35A2049-8502-41F2-894E-E39AEBEB6816", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "1109A84D-1815-4A7B-8EDA-E493A1973224", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "B20531A3-F6F8-4FE1-9C0A-FDFABAC4C6AA", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "C9F212AE-D5B3-4A88-A1E6-00A13A0A2AD5", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.9:*:*:*:*:*:*:*", "matchCriteriaId": "DD82E956-8C8E-4B38-9E82-4AA9AEFE6891", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.10:*:*:*:*:*:*:*", "matchCriteriaId": "2D0F0EA4-A0DF-48CC-9B42-465A36945503", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.11:*:*:*:*:*:*:*", "matchCriteriaId": "8945D2A7-B1C3-4981-B840-FB046AB6F4B6", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.4.12:*:*:*:*:*:*:*", "matchCriteriaId": "338E969E-2CC6-44F3-A938-EE7131375AB8", "vulnerable": false}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.03:*:*:*:*:*:*:*", "matchCriteriaId": "78325087-599F-448B-8C47-570914FF6C59", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.04:*:*:*:*:*:*:*", "matchCriteriaId": "059CFA5C-B262-47AF-94A6-8E74AFB19204", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.05:*:*:*:*:*:*:*", "matchCriteriaId": "12F25627-235B-4312-80A4-4E36DE0E72A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.06:*:*:*:*:*:*:*", "matchCriteriaId": "B3E70B88-6348-42BB-AE96-46BDB1F3C6FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.07:*:*:*:*:*:*:*", "matchCriteriaId": "12A9DF25-48E8-4D52-A267-1BE0437E9000", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.08:*:*:*:*:*:*:*", "matchCriteriaId": "C986533F-E320-46FA-A9F7-DAFDB1A0628A", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.09:*:*:*:*:*:*:*", "matchCriteriaId": "7C77DED4-2696-4172-92B7-43034E61F845", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.10:*:*:*:*:*:*:*", "matchCriteriaId": "2EDCCFDA-99A8-4590-99F1-95F3A5AD70B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.11:*:*:*:*:*:*:*", "matchCriteriaId": "BED1BA7D-B603-49D4-9080-4A9FEC056A69", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.12:*:*:*:*:*:*:*", "matchCriteriaId": "9E8EB86B-2DD9-4C4B-9C9A-E88B2C458C8B", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.13:*:*:*:*:*:*:*", "matchCriteriaId": "207B98DB-5962-4F62-AF5B-D48EF0C0E2A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.14:*:*:*:*:*:*:*", "matchCriteriaId": "DFB65639-AE3A-4984-93F9-2A8100DCEE6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.15:*:*:*:*:*:*:*", "matchCriteriaId": "B8921D08-FBA3-4C0A-8944-362909C5EB6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:xelerance:openswan:2.6.16:*:*:*:*:*:*:*", "matchCriteriaId": "3FBD5312-E44F-4996-AA29-AFED53A90E8E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files.  NOTE: in many distributions and the upstream version, this tool has been disabled."}, {"lang": "es", "value": "La herramienta livetest de IPSEC en Openswan versi\u00f3n 2.4.12 y anteriores, y versiones 2.6.x hasta 2.6.16, permite a los usuarios locales sobrescribir archivos arbitrarios y ejecutar c\u00f3digo arbitrario mediante un ataque de tipo symlink en los archivos temporales (1) ipseclive.conn y (2) ipsec.olts.remote.log. NOTA: en muchas distribuciones y en la versi\u00f3n anterior, esta herramienta se ha deshabilitado."}], "id": "CVE-2008-4190", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-09-24T11:42:25.250", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374"}, {"source": "cve@mitre.org", "url": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/34182"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/34472"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.debian.org/security/2009/dsa-1760"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2008/10/30/2"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.redhat.com/support/errata/RHSA-2009-0402.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/501624/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/501640/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/31243"}, {"source": "cve@mitre.org", "url": "https://bugs.gentoo.org/show_bug.cgi?id=235770"}, {"source": "cve@mitre.org", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45250"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/9135"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496374"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://dev.gentoo.org/~rbu/security/debiantemp/openswan"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/34182"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/34472"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.debian.org/security/2009/dsa-1760"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2008/10/30/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.redhat.com/support/errata/RHSA-2009-0402.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/501624/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/501640/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/31243"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugs.gentoo.org/show_bug.cgi?id=235770"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45250"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10078"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/9135"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "This issue has been addressed via: https://rhn.redhat.com/errata/RHSA-2009-0402.html", "lastModified": "2009-03-30T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2009:0402", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "openswan-0:2.6.14-1.el5_3.2", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2009-03-30T00:00:00Z"}], "bugzilla": {"description": "openswan: Insecure auxiliary /tmp file usage (symlink attack possible)", "id": "460425", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=460425"}, "csaw": false, "details": ["The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files.  NOTE: in many distributions and the upstream version, this tool has been disabled."], "name": "CVE-2008-4190", "public_date": "2008-08-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2008-4190\nhttps://nvd.nist.gov/vuln/detail/CVE-2008-4190"], "threat_severity": "Low"}