CVE-2008-4477
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-4477
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mon 'alert.d/test.alert' 不安全临时文件创建漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
mon的alert.d/test.alert允许本地用户通过对test.alert.log临时文件上的一个符号链接攻击来复写任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-4477
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-4477
Please Login to view more intelligence information
- http://dev.gentoo.org/~rbu/security/debiantemp/monx_refsource_CONFIRM
- https://bugs.gentoo.org/show_bug.cgi?id=235770x_refsource_CONFIRM
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496398x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2008-4477
Same Patch Batch · n/a · 2008-10-07 · 28 CVEs total
| CVE-2008-4470 | Numark CUE 5 '.m3u' 文件缓冲区溢出和拒绝服务漏洞 | |
| CVE-2008-3061 | v-webmail 'redirect.php' 漏洞开放重定向漏洞 | |
| CVE-2008-3063 | v-webmail 'login.php' SQL注入漏洞 | |
| CVE-2008-3060 | v-webmail 'local.hooks.php'和无效ID信息泄露漏洞 | |
| CVE-2008-4476 | Sympa 'sympa.pl' 不安全临时文件创建漏洞 | |
| CVE-2008-4475 | gnu ibackup 后置符号链接漏洞 | |
| CVE-2008-4474 | FreeRADIUS Dialup Admin 'freeradius-dialupadmin' 不安全临时文件创建漏洞 | |
| CVE-2008-3834 | D-Bus dbus_signature_validate()函数类型签名拒绝服务漏洞 | |
| CVE-2008-4472 | autodesk design_review LiveUpdate ActiveX UpdateEngine类存在权限许可和访问控制漏洞 | |
| CVE-2008-4471 | autodesk design review DWF Viewer ActiveX CExpressViewerControl类中存在路径遍历漏洞 | |
| CVE-2008-4421 | MetaGauge Web Server 目录遍历漏洞 | |
| CVE-2008-4393 | VeriSign Kontiki Delivery Management System 'action' 参数跨站脚本攻击漏洞 | |
| CVE-2008-4384 | iseemedia 'LPControl.dll' LPViewer ActiveX控件多个栈溢出漏洞 | |
| CVE-2008-3543 | hp oncplus 未明拒绝服务攻击漏洞 | |
| CVE-2008-4457 | MemHT Portal 'inc_statistics.php' SQL注入漏洞 | |
| CVE-2008-4469 | Vastal I-Tech Freelance Zone 'view_cresume.php' SQL注入漏洞 | |
| CVE-2008-4468 | Vastal I-Tech Share Zone 'view_news.php' SQL注入漏洞 | |
| CVE-2008-4467 | Vastal I-Tech Toner Cart 'show_series_ink.php'SQL注入漏洞 | |
| CVE-2008-4466 | Vastal I-Tech Cosmetics Zone 'view_products_cat.php' SQL注入漏洞 | |
| CVE-2008-4465 | Vastal I-Tech DVD Zone 'view_mags.php' SQL注入漏洞 |
Showing top 20 of 28 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2008-4477
No comments yet