CVE-2018-6557 - OpenCVE

The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Base-files Project	Base-files
Canonical	Ubuntu Linux

Configuration 1 [-]

OR	cpe:2.3:a:base-files_project:base-files:10.1ubuntu2.2:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/105148
http://www.securitytracker.com/id/1041530
https://usn.ubuntu.com/3748-1/

History

No history.

MITRE

Status: PUBLISHED

Assigner: canonical

Published: 2018-08-21T16:00:00Z

Updated: 2024-09-16T18:24:32.413Z

Reserved: 2018-02-02T00:00:00

Link: CVE-2018-6557

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2018-08-21T16:29:00.637

Modified: 2023-01-18T21:22:39.193

Link: CVE-2018-6557

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "base-files", "vendor": "Ubuntu", "versions": [{"lessThan": "10.1ubuntu2.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Sander Bos"}], "datePublic": "2018-08-21T00:00:00", "descriptions": [{"lang": "en", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}], "problemTypes": [{"descriptions": [{"description": "Insecure Temporary File", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-08-28T09:57:01", "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical"}, "references": [{"name": "USN-3748-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/3748-1/"}, {"name": "1041530", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1041530"}, {"name": "105148", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/105148"}], "source": {"discovery": "EXTERNAL"}, "title": "Insecure temporary file use in base-files", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@ubuntu.com", "DATE_PUBLIC": "2018-08-21T00:00:00.000Z", "ID": "CVE-2018-6557", "STATE": "PUBLIC", "TITLE": "Insecure temporary file use in base-files"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "base-files", "version": {"version_data": [{"affected": "<", "version_affected": "<", "version_value": "10.1ubuntu2.2"}]}}]}, "vendor_name": "Ubuntu"}]}}, "credit": [{"lang": "eng", "value": "Sander Bos"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Insecure Temporary File"}]}]}, "references": {"reference_data": [{"name": "USN-3748-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3748-1/"}, {"name": "1041530", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1041530"}, {"name": "105148", "refsource": "BID", "url": "http://www.securityfocus.com/bid/105148"}]}, "source": {"discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T06:10:10.072Z"}, "title": "CVE Program Container", "references": [{"name": "USN-3748-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/3748-1/"}, {"name": "1041530", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1041530"}, {"name": "105148", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/105148"}]}]}, "cveMetadata": {"assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "assignerShortName": "canonical", "cveId": "CVE-2018-6557", "datePublished": "2018-08-21T16:00:00Z", "dateReserved": "2018-02-02T00:00:00", "dateUpdated": "2024-09-16T18:24:32.413Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:base-files_project:base-files:10.1ubuntu2.2:*:*:*:*:*:*:*", "matchCriteriaId": "8A95C549-93EC-4A40-904F-7CFED2A94694", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled."}, {"lang": "es", "value": "El script de actualizaci\u00f3n de MOTD en el paquete de archivos base en Ubuntu 18.04 LTS en versiones anteriores a la 10.1ubuntu2.2 y Ubuntu 18.10 anteriores a la 10.1ubuntu6 manejaba incorrectamente los archivos temporales. Un atacante local podr\u00eda usar este problema para provocar una denegaci\u00f3n de servicio o posiblemente escalar privilegios si se desactivan las restricciones de enlaces simb\u00f3licos del kernel."}], "id": "CVE-2018-6557", "lastModified": "2023-01-18T21:22:39.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-08-21T16:29:00.637", "references": [{"source": "security@ubuntu.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/105148"}, {"source": "security@ubuntu.com", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1041530"}, {"source": "security@ubuntu.com", "tags": ["Vendor Advisory"], "url": "https://usn.ubuntu.com/3748-1/"}], "sourceIdentifier": "security@ubuntu.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}