Denial of Service Vulnerability in Sabre by Sabre Technologies
CVE-2008-4407

Currently unrated

Key Information:

Vendor: Debian
Status: Xsabre
Vendor: CVE Published:; 3 October 2008

Summary

The vulnerability in Sabre (version 0.2.4b) allows local users to disrupt the application's functionality by exploiting the system's handling of the /tmp/sabre.log file. When a user creates a specific /tmp/sabre.log file, it prevents the application from overwriting it, leading to a denial of service condition where the application becomes unavailable to other users. This issue arises due to insufficient checks and improper file management within the application, posing a risk for environments where multiple users have access.

References

http://bugs.debian.org/433996

x_refsource_MISC

http://osvdb.org/48900

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Oct 3, 2008
Vulnerability Reserved
Oct 3, 2008