CVE-2015-1591

EUVD-2015-1722
The kamailio build in kamailio before 4.2.0-2 process allows local users to gain privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
kamailiokamailio
𝑥
≤ 4.2.0-1.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
kamailio
bookworm
5.6.3-2
fixed
bullseye
5.4.4-1
fixed
sid
5.8.3-1
fixed
trixie
5.8.3-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kamailio
artful
not-affected
bionic
not-affected
cosmic
not-affected
disco
not-affected
lucid
dne
precise
dne
trusty
dne
utopic
ignored
vivid
not-affected
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
Common Weakness Enumeration
References
http://cve.killedkenny.io/cve/CVE-2015-1591
http://www.openwall.com/lists/oss-security/2015/02/12/7
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775681
https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=17%3Bfilename=0001-fix-fifo-and-ctl-defaults-pointing-to-unsecure-tmp-d.patch%3Batt=1%3Bbug=775681
https://github.com/kamailio/kamailio/issues/48
https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1591.html
http://cve.killedkenny.io/cve/CVE-2015-1591
http://www.openwall.com/lists/oss-security/2015/02/12/7
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775681
https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=17%3Bfilename=0001-fix-fifo-and-ctl-defaults-pointing-to-unsecure-tmp-d.patch%3Batt=1%3Bbug=775681
https://github.com/kamailio/kamailio/issues/48
https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1591.html