File Deletion Vulnerability in Apport on Ubuntu Systems
CVE-2009-1295

Currently unrated

Key Information:

Vendor: Ubuntu
Status: Ubuntu; Apport
Vendor: CVE Published:; 30 April 2009

What is CVE-2009-1295?

The Apport tool in Ubuntu lacks proper file management in its crash-report directory, allowing privileged local users to exploit this weakness and delete arbitrary files. This can lead to unauthorized data manipulation, compromising system integrity and user data. Effective mitigation measures should be implemented to ensure the security and integrity of affected systems.

References

http://www.ubuntu.com/usn/usn-768-1

vendor-advisoryx_refsource_UBUNTU

http://secunia.com/advisories/34947

third-party-advisoryx_refsource_SECUNIA

https://launchpad.net/bugs/cve/2009-1295

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2009
Vulnerability Reserved
Apr 15, 2009