CVE-2008-0890

Published: Mar 12, 2008Modified: Apr 23, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors.

Affected (1)

Products: Redhat: Directory Server

Redhat

1 product

Directory Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Directory Server	Up to 7.1

Related CWEs

CWE-264

References (10)

http://secunia.com/advisories/29350

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2008-0173.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/28204

Source: secalert@redhat.com

http://www.securitytracker.com/id?1019577

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/41152

Source: secalert@redhat.com

http://secunia.com/advisories/29350