Vulnerability Details CVE-2008-2359
The default configuration of consolehelper in system-config-network before 1.5.10-1 on Fedora 8 lacks the USER=root directive, which allows local users of the workstation console to gain privileges and change the network configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.2%
CVSS Severity
CVSS v2 Score 7.2
References
- http://secunia.com/advisories/30399
- https://bugzilla.redhat.com/show_bug.cgi?id=448557
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42867
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00974.html
- http://secunia.com/advisories/30399
- https://bugzilla.redhat.com/show_bug.cgi?id=448557
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42867
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00974.html
Products affected by CVE-2008-2359
-
cpe:2.3:o:fedora_8:consolehelper:1.4.4
-
cpe:2.3:o:fedora_8:consolehelper:1.4.5
-
cpe:2.3:o:fedora_8:consolehelper:1.4.6
-
cpe:2.3:o:fedora_8:consolehelper:1.4.7
-
cpe:2.3:o:fedora_8:consolehelper:1.5.0
-
cpe:2.3:o:fedora_8:consolehelper:1.5.1
-
cpe:2.3:o:fedora_8:consolehelper:1.5.10
-
cpe:2.3:o:fedora_8:consolehelper:1.5.2
-
cpe:2.3:o:fedora_8:consolehelper:1.5.3
-
cpe:2.3:o:fedora_8:consolehelper:1.5.4
-
cpe:2.3:o:fedora_8:consolehelper:1.5.5
-
cpe:2.3:o:fedora_8:consolehelper:1.5.6
-
cpe:2.3:o:fedora_8:consolehelper:1.5.7
-
cpe:2.3:o:fedora_8:consolehelper:1.5.8
-
cpe:2.3:o:fedora_8:consolehelper:1.5.9
-
cpe:2.3:o:redhat:fedora_8:1.4.4
-
cpe:2.3:o:redhat:fedora_8:1.4.5
-
cpe:2.3:o:redhat:fedora_8:1.4.6
-
cpe:2.3:o:redhat:fedora_8:1.4.7
-
cpe:2.3:o:redhat:fedora_8:1.5.
-
cpe:2.3:o:redhat:fedora_8:1.5.0
-
cpe:2.3:o:redhat:fedora_8:1.5.1
-
cpe:2.3:o:redhat:fedora_8:1.5.10
-
cpe:2.3:o:redhat:fedora_8:1.5.2
-
cpe:2.3:o:redhat:fedora_8:1.5.3
-
cpe:2.3:o:redhat:fedora_8:1.5.4
-
cpe:2.3:o:redhat:fedora_8:1.5.5
-
cpe:2.3:o:redhat:fedora_8:1.5.6
-
cpe:2.3:o:redhat:fedora_8:1.5.7
-
cpe:2.3:o:redhat:fedora_8:1.5.8
-
cpe:2.3:o:redhat:fedora_8:1.5.9