Published: 02/12/2014 Updated: 02/12/2014

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

host-deny.sh in OSSEC prior to 2.8.1 writes to temporary files with predictable filenames without verifying ownership, which allows local users to modify access restrictions in hosts.deny and gain root privileges by creating the temporary files before automatic IP blocking is performed.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ossec ossec

#!/usr/bin/python # Exploit Title: ossec 28 Insecure Temporary File Creation Vulnerability Privilege Escalation # Date: 14-11-14 # Exploit Author: skynet-13 # Vendor Homepage: wwwossecnet/ # Software Link: githubcom/ossec/ossec-hids/archive/281targz # Version: OSSEC - 28 # Tested on: Ubunutu x86_64 # CVE : 2014-5284 # Created fro ...

Bash implementation of CVE-2014-5284

CVE-2014-5284 Bash implementation of CVE-2014-5284 Exploit Title: ossec 28 Insecure Temporary File Creation Vulnerability Privilege Escalation Python is nice but doesn't work all the time Exploit Author: mbadanoiu Python Exploit Author: skynet-13 Vendor Homepage: wwwossecnet/ Software Link: githubcom/ossec/ossec-hids/archive/281targz Version: OSSEC - 28

CWE-264 https://github.com/ossec/ossec-hids/releases/tag/2.8.1 http://packetstormsecurity.com/files/129111/OSSEC-2.8-Privilege-Escalation.html http://www.exploit-db.com/exploits/35234 https://nvd.nist.gov https://github.com/mbadanoiu/CVE-2014-5284 https://www.exploit-db.com/exploits/35234/

CVE-2014-5284

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect