Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
1.9
CVSSv2

CVE-2009-1295

Published: 30/04/2009 Updated: 15/05/2009
CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4
VMScore: 169
Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Ubuntu

Vulnerability Summary

Apport prior to 0.108.4 on Ubuntu 8.04 LTS, prior to 0.119.2 on Ubuntu 8.10, and prior to 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files from the application's crash-report directory, which allows local users to delete arbitrary files via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

ubuntu ubuntu 9.0.4

apport apport

ubuntu ubuntu 8.0.4_lts

ubuntu ubuntu 8.1.0

Vendor Advisories

Ubuntu Security Notice: Apport vulnerability
Stephane Chazelas discovered that Apport did not safely remove files from its crash report directory If Apport had been enabled at some point, a local attacker could remove arbitrary files from the system ...

References

CWE-16http://www.ubuntu.com/usn/usn-768-1https://bugs.launchpad.net/bugs/357024http://www.securityfocus.com/bid/34776https://launchpad.net/bugs/cve/2009-1295http://secunia.com/advisories/34947http://secunia.com/advisories/34952http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlhttp://secunia.com/advisories/35065https://usn.ubuntu.com/768-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook