CVE-2018-6557 - OpenCVE

The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled.

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Canonical	Ubuntu Linux
Base-files Project	Base-files

Configuration 1 [-]

OR	cpe:2.3:a:base-files_project:base-files:10.1ubuntu2.2:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

References

Link	Resource
http://www.securityfocus.com/bid/105148	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1041530	Broken Link Third Party Advisory VDB Entry
https://usn.ubuntu.com/3748-1/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: canonical

Published: 2018-08-21T00:00:00

Updated: 2018-08-28T09:57:01

Reserved: 2018-02-02T00:00:00

Link: CVE-2018-6557

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-08-21T16:29:00.637

Modified: 2023-01-18T21:22:39.193

Link: CVE-2018-6557

JSON object: View

Redhat Information

No data.

CWE

CWE-59

{"containers": {"cna": {"affected": [{"product": "base-files", "vendor": "Ubuntu", "versions": [{"lessThan": "10.1ubuntu2.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Sander Bos"}], "datePublic": "2018-08-21T00:00:00", "descriptions": [{"lang": "en", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}], "problemTypes": [{"descriptions": [{"description": "Insecure Temporary File", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-08-28T09:57:01", "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical"}, "references": [{"name": "USN-3748-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/3748-1/"}, {"name": "1041530", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1041530"}, {"name": "105148", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/105148"}], "source": {"discovery": "EXTERNAL"}, "title": "Insecure temporary file use in base-files", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@ubuntu.com", "DATE_PUBLIC": "2018-08-21T00:00:00.000Z", "ID": "CVE-2018-6557", "STATE": "PUBLIC", "TITLE": "Insecure temporary file use in base-files"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "base-files", "version": {"version_data": [{"affected": "<", "version_affected": "<", "version_value": "10.1ubuntu2.2"}]}}]}, "vendor_name": "Ubuntu"}]}}, "credit": [{"lang": "eng", "value": "Sander Bos"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Insecure Temporary File"}]}]}, "references": {"reference_data": [{"name": "USN-3748-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3748-1/"}, {"name": "1041530", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1041530"}, {"name": "105148", "refsource": "BID", "url": "http://www.securityfocus.com/bid/105148"}]}, "source": {"discovery": "EXTERNAL"}}}}, "cveMetadata": {"assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "assignerShortName": "canonical", "cveId": "CVE-2018-6557", "datePublished": "2018-08-21T00:00:00", "dateReserved": "2018-02-02T00:00:00", "dateUpdated": "2018-08-28T09:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:base-files_project:base-files:10.1ubuntu2.2:*:*:*:*:*:*:*", "matchCriteriaId": "8A95C549-93EC-4A40-904F-7CFED2A94694", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}, {"lang": "es", "value": "El script de actualizaci\u00f3n de MOTD en el paquete de archivos base en Ubuntu 18.04 LTS en versiones anteriores a la 10.1ubuntu2.2 y Ubuntu 18.10 anteriores a la 10.1ubuntu6 manejaba incorrectamente los archivos temporales. Un atacante local podr\u00eda usar este problema para provocar una denegaci\u00f3n de servicio o posiblemente escalar privilegios si se desactivan las restricciones de enlaces simb\u00f3licos del kernel."}], "id": "CVE-2018-6557", "lastModified": "2023-01-18T21:22:39.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-08-21T16:29:00.637", "references": [{"source": "security@ubuntu.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/105148"}, {"source": "security@ubuntu.com", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1041530"}, {"source": "security@ubuntu.com", "tags": ["Vendor Advisory"], "url": "https://usn.ubuntu.com/3748-1/"}], "sourceIdentifier": "security@ubuntu.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}