CVE-2008-0892: Input Validation
First published: Thu Mar 13 2008(Updated: )
Richard Megginson discovered a shell command injection flaw in the Admin Server's replication monitor CGI perl script repl-monitor-cgi.pl. Script parameters were not properly sanitized prior to being passed to system() function. An attacker able to access replication monitor CGI script could execute arbitrary shell command with privileges of Admin Server. Affected versions: - Red Hat Directory Server 7.1 - Admin Server runs with root privileges - Red Hat Directory Server 8 - Admin Server runs under an unprivileged user, following users by default: - nobody on Red Hat Enterprise Linux and Solaris - daemon on HP-UX - Fedora Directory Server - Admin Server runs under an unprivileged user, nobody by default
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Fedora Directory Server | ||
| Red Hat Directory Server | =7.1 | |
| Red Hat Directory Server | =8-el4 | |
| Red Hat Directory Server | =8-el5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=437301
- http://www.redhat.com/support/errata/RHSA-2008-0201.html
- http://secunia.com/advisories/29761
- http://www.redhat.com/support/errata/RHSA-2008-0199.html
- http://www.securityfocus.com/bid/28802
- http://www.securitytracker.com/id?1019856
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html
- http://secunia.com/advisories/29826
- http://secunia.com/advisories/30114
- http://www.vupen.com/english/advisories/2008/1449/references
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41840
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=302494
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=302494&action=edit
Frequently Asked Questions
What is the severity of CVE-2008-0892?
CVE-2008-0892 has a high severity rating due to the potential for remote command execution through the replication monitor CGI script.
How do I fix CVE-2008-0892?
To fix CVE-2008-0892, upgrade to the patched version of Red Hat Directory Server as recommended in security advisories.
What systems are affected by CVE-2008-0892?
CVE-2008-0892 affects various versions of Red Hat Fedora Directory Server and Red Hat Directory Server, specifically 7.1, 8-el4, and 8-el5.
Can CVE-2008-0892 be exploited remotely?
Yes, CVE-2008-0892 can be exploited remotely by attackers with access to the replication monitor CGI script.
What type of vulnerability is CVE-2008-0892?
CVE-2008-0892 is categorized as a shell command injection vulnerability.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/last-modified-date
- agent/event
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-0892
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/redhat
- canonical/red hat fedora directory server
- canonical/red hat directory server
- version/red hat directory server/7.1
- version/red hat directory server/8-el4
- version/red hat directory server/8-el5