CVE-2008-0001 | Date: (C)2008-01-15 (M)2024-02-22 |
VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.
CVSS Score and Metrics +CVSS Score and Metrics -CVSS V2 Severity: |
CVSS Score : 3.6 |
Exploit Score: 3.9 |
Impact Score: 4.9 |
|
CVSS V2 Metrics: |
Access Vector: LOCAL |
Access Complexity: LOW |
Authentication: NONE |
Confidentiality: NONE |
Integrity: PARTIAL |
Availability: PARTIAL |
| |