Vulnerability Details : CVE-2012-2652
The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.
Exploit prediction scoring system (EPSS) score for CVE-2012-2652
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-2652
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.4
|
MEDIUM | AV:L/AC:M/Au:N/C:P/I:P/A:P |
3.4
|
6.4
|
NIST |
References for CVE-2012-2652
-
http://www.securityfocus.com/bid/53725
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
-
http://git.qemu.org/?p=qemu-stable-0.15.git%3Ba=log
git.qemu.org Git
-
http://www.debian.org/security/2012/dsa-2545
Debian -- Security Information -- DSA-2545-1 qemu
-
http://git.kernel.org/?p=virt/kvm/qemu-kvm.git%3Ba=commit%3Bh=eba25057b9a5e19d10ace2bc7716667a31297169
-
http://www.ubuntu.com/usn/USN-1522-1
USN-1522-1: QEMU vulnerability | Ubuntu security notices
-
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00024.html
[security-announce] SUSE-SU-2012:1202-1: important: Security update for
Products affected by CVE-2012-2652
- cpe:2.3:a:qemu:qemu:1.0:*:*:*:*:*:*:*