Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-18240

The Gentoo app-admin/collectd package before 5.7.2-r1 sets the ownership of PID file directory to the collectd account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script sends a SIGKILL (when the service is stopped).

Published

2018-03-19T02:29:00.207

Last Modified

2024-11-21T03:19:39.493

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 5.5 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

6.9

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	collectd	collectd	≤ 5.7.2	Yes
Application	collectd	collectd	5.7.2	Yes

References

http://www.securityfocus.com/bid/103469 Third Party Advisory, VDB Entry ([email protected])
https://bugs.gentoo.org/628540 Issue Tracking, Vendor Advisory ([email protected])
https://security.gentoo.org/glsa/201803-10 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/103469 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.gentoo.org/628540 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201803-10 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)