Vulnerability Database

309,364

Total vulnerabilities in the database

CVE-2014-5284

host-deny.sh in OSSEC before 2.8.1 writes to temporary files with predictable filenames without verifying ownership, which allows local users to modify access restrictions in hosts.deny and gain root privileges by creating the temporary files before automatic IP blocking is performed.

Published: Dec 2, 2014
Updated: Nov 9, 2025
CVE: CVE-2014-5284
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ossec / ossec	-	2.8.0.x

http://packetstormsecurity.com/files/129111/OSSEC-2.8-Privilege-Escalation.html
http://www.exploit-db.com/exploits/35234
https://github.com/ossec/ossec-hids/releases/tag/2.8.1

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo