CVE-2008-0931

high

Description

w_export.c in XWine 1.0.1 on Debian GNU/Linux sets insecure permissions (0666) for /etc/wine/config, which might allow local users to execute arbitrary commands or cause a denial of service by modifying the file.

References

http://www.securityfocus.com/bid/28369

http://www.debian.org/security/2008/dsa-1526

http://secunia.com/advisories/29452

http://secunia.com/advisories/29125

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=468050

Details

Source: Mitre, NVD

Published: 2008-03-04

Updated: 2008-09-05

Risk Information

CVSS v2

Base Score: 6.3

Vector: CVSS2#AV:L/AC:M/Au:N/C:N/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics