CVE - CVE-2008-2936

CVE-ID
CVE-2008-2936	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to gain privileges if there is a symlink to an init script.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1020700 URL:http://www.securitytracker.com/id?1020700 MISC:20080814 Postfix local privilege escalation via hardlinked symlinks URL:http://www.securityfocus.com/archive/1/495474/100/0/threaded MISC:20080821 rPSA-2008-0259-1 postfix URL:http://www.securityfocus.com/archive/1/495632/100/0/threaded MISC:20080831 PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) URL:http://www.securityfocus.com/archive/1/495882/100/0/threaded MISC:30691 URL:http://www.securityfocus.com/bid/30691 MISC:31469 URL:http://secunia.com/advisories/31469 MISC:31474 URL:http://secunia.com/advisories/31474 MISC:31477 URL:http://secunia.com/advisories/31477 MISC:31485 URL:http://secunia.com/advisories/31485 MISC:31500 URL:http://secunia.com/advisories/31500 MISC:31530 URL:http://secunia.com/advisories/31530 MISC:32231 URL:http://secunia.com/advisories/32231 MISC:4160 URL:http://securityreason.com/securityalert/4160 MISC:6337 URL:https://www.exploit-db.com/exploits/6337 MISC:ADV-2008-2385 URL:~~http://www.vupen.com/english/advisories/2008/2385~~ (Obsolete source) MISC:DSA-1629 URL:http://www.debian.org/security/2008/dsa-1629 MISC:FEDORA-2008-8593 URL:https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00287.html MISC:FEDORA-2008-8595 URL:https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00271.html MISC:GLSA-200808-12 URL:http://security.gentoo.org/glsa/glsa-200808-12.xml MISC:MDVSA-2008:171 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:171~~ (Obsolete source) MISC:RHSA-2008:0839 URL:http://www.redhat.com/support/errata/RHSA-2008-0839.html MISC:SUSE-SA:2008:040 URL:http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00002.html MISC:USN-636-1 URL:https://usn.ubuntu.com/636-1/ MISC:VU#938323 URL:http://www.kb.cert.org/vuls/id/938323 MISC:[postfix-announce] 20080814 Postfix local privilege escalation via hardlinked symlinks URL:http://article.gmane.org/gmane.mail.postfix.announce/110 MISC:ftp://ftp.porcupine.org/mirrors/postfix-release/experimental/postfix-2.6-20080814.HISTORY URL:ftp://ftp.porcupine.org/mirrors/postfix-release/experimental/postfix-2.6-20080814.HISTORY MISC:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.3.15.HISTORY URL:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.3.15.HISTORY MISC:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.4.8.HISTORY URL:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.4.8.HISTORY MISC:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.5.4.HISTORY URL:ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.5.4.HISTORY MISC:http://wiki.rpath.com/Advisories:rPSA-2008-0259 URL:http://wiki.rpath.com/Advisories:rPSA-2008-0259 MISC:https://issues.rpath.com/browse/RPL-2689 URL:https://issues.rpath.com/browse/RPL-2689 MISC:oval:org.mitre.oval:def:10033 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10033 MISC:postfix-symlink-code-execution(44460) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/44460
Assigning CNA
Red Hat, Inc.
Date Record Created
20080630	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080630)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)