CVE-2009-1601
First published: Mon May 11 2009(Updated: )
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ubuntu 22.04 LTS | =9.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-1601?
CVE-2009-1601 is considered a medium severity vulnerability due to potential local privilege escalation.
How do I fix CVE-2009-1601?
To fix CVE-2009-1601, update to the latest version of clamav-milter that addresses this issue.
What systems are affected by CVE-2009-1601?
CVE-2009-1601 affects Ubuntu 9.04 systems running the clamav-milter before version 0.95.1+dfsg-1ubuntu1.2.
What are the implications of CVE-2009-1601?
The implications of CVE-2009-1601 include the potential for local users to gain unauthorized access to files in the clamav-milter working directory.
Is CVE-2009-1601 still relevant today?
While CVE-2009-1601 targets an outdated version of Ubuntu, it is relevant for environments still using that version.
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/remedy
- agent/author
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/ubuntu
- canonical/ubuntu 22.04 lts
- version/ubuntu 22.04 lts/9.04