ByteOS Network

NVD Vulnerability Details :

CVE-2008-2517

Modified

Source-cve@mitre.org

Published At-03 Jun, 2008 | 14:32

Updated At-23 Apr, 2026 | 00:35

The sarab.sh script in SaraB before 0.2.4 places the dar program's encryption key on the command line, which allows local users to obtain sensitive information by listing the process.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 2.1

Base severity: LOW

Vector:

AV:L/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

sarab>>sarab>>Versions up to 0.2.3(inclusive)

cpe:2.3:a:sarab:sarab:*:*:*:*:*:*:*:*

sarab>>sarab>>0.2.2

cpe:2.3:a:sarab:sarab:0.2.2:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-200	Primary	nvd@nist.gov

CWE ID: CWE-200

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://sarab.svn.sourceforge.net/viewvc/sarab/sarab/sarab.sh?r1=34&r2=36	cve@mitre.org	Exploit
http://sarab.svn.sourceforge.net/viewvc/sarab/sarab/sarab.sh?view=log	cve@mitre.org	N/A
http://secunia.com/advisories/30394	cve@mitre.org	Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=601603&group_id=91804	cve@mitre.org	N/A
http://www.securityfocus.com/bid/29364	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/1659/references	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/42621	cve@mitre.org	N/A
http://sarab.svn.sourceforge.net/viewvc/sarab/sarab/sarab.sh?r1=34&r2=36	af854a3a-2127-422b-91ae-364da2661108	Exploit
http://sarab.svn.sourceforge.net/viewvc/sarab/sarab/sarab.sh?view=log	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/30394	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=601603&group_id=91804	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/29364	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2008/1659/references	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/42621	af854a3a-2127-422b-91ae-364da2661108	N/A