Description
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Avaya / intuity_audix_lx2.0 – 2.0
- Avaya / intuity_audix_lx2.0 – 2.0
- Avaya / intuity_audix_lx2.0 – 2.0
- Avaya / message_networking3.1 – 3.1
- Avaya / messaging_storage_server3.0 – 3.0
- Avaya / messaging_storage_server5.0 – 5.0
- Avaya / messaging_storage_server4.0 – 4.0
- christophe.varoqui / multipath-tools0.4.8 – 0.4.8
- Debian / debian_linux5.0 – 5.0
- Debian / debian_linux4.0 – 4.0
- fedoraproject / fedora10 – 10
- fedoraproject / fedora9 – 9
- Juniper / ctpview7.1 – 7.1
- Juniper / ctpview7.1
- Novell / open_enterprise_server
- openSUSE / opensuse10.3 – 11.0
- SUSE / linux_enterprise_desktop9 – 9
- SUSE / linux_enterprise_server9 – 9
- SUSE / linux_enterprise_server10 – 10
References
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/34759
- VENDOR_ADVISORYhttp://secunia.com/advisories/38794
- MAILING_LISThttp://lists.vmware.com/pipermail/security-announce/2010/000082.html
- VENDOR_ADVISORYhttp://www.debian.org/security/2009/dsa-1767
- VENDOR_ADVISORYhttp://secunia.com/advisories/34642
- VENDOR_ADVISORYhttp://secunia.com/advisories/34694
- MISChttp://support.avaya.com/elmodocs2/security/ASA-2009-128.htm
- VENDOR_ADVISORYhttp://secunia.com/advisories/34418
- VENDOR_ADVISORYhttp://secunia.com/advisories/34710
- MISChttps://www.redhat.com/archives/fedora-package-announce/2009-April/msg00236.html
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html
- MISChttp://launchpad.net/bugs/cve/2009-0115
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9214
- MISChttps://www.redhat.com/archives/fedora-package-announce/2009-April/msg00231.html
- MISChttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691
- MISChttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- MISChttp://download.opensuse.org/update/10.3-test/repodata/patch-kpartx-6082.xml
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2010/0528