CVE-2014-5284
First published: Tue Dec 02 2014(Updated: )
host-deny.sh in OSSEC before 2.8.1 writes to temporary files with predictable filenames without verifying ownership, which allows local users to modify access restrictions in hosts.deny and gain root privileges by creating the temporary files before automatic IP blocking is performed.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OSSEC | <=2.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-5284?
CVE-2014-5284 has a high severity rating due to the potential for local users to gain root privileges.
How do I fix CVE-2014-5284?
To fix CVE-2014-5284, upgrade OSSEC to version 2.8.1 or later.
What versions of OSSEC are affected by CVE-2014-5284?
CVE-2014-5284 affects all OSSEC versions before 2.8.1.
What are the potential impacts of CVE-2014-5284?
The primary impact of CVE-2014-5284 is that it allows local users to modify access restrictions and gain root access.
What is the nature of the vulnerability in CVE-2014-5284?
CVE-2014-5284 is a privilege escalation vulnerability caused by predictable temporary filenames and improper ownership verification.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/references
- agent/remedy
- agent/weakness
- agent/severity
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ossec
- canonical/ossec
- version/ossec/2.8.0