CVE-2009-3889

CVSS v2.0

6.6

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.27

Description The issue concerns the megaraid sas driver in the Linux kernel, where the dbg lvl file has world-writable permissions. This allows local users to modify the file, which in turn enables them to change the behavior and logging level of the driver.

Recommendations For Linux kernel versions prior to 2.6.27, update to version 2.6.27 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2009-3889

DSA-2005-1

RHSA-2009:1635

RHSA-2010:0046

RHSA-2010:0076

RHSA-2010_0046

RHSA-2010_0076

Affected Products

Linux Kernel

Red Hat

CVE-2009-3889

Weakness Enumeration

Related Identifiers

Affected Products

References · 47