CVE-2003-1073

Sažetak

A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0044.html
http://isec.pl/vulnerabilities/isec-0008-sun-at.txt
http://secunia.com/advisories/7960/
http://sunsolve.sun.com/search/document.do?assetkey=1-26-50161-1
http://www.ciac.org/ciac/bulletins/n-070.shtml
http://www.securityfocus.com/archive/1/308577
http://www.securityfocus.com/bid/6692
http://www.securityfocus.com/bid/6693
http://www.securitytracker.com/id?1005994
https://exchange.xforce.ibmcloud.com/vulnerabilities/11179
https://exchange.xforce.ibmcloud.com/vulnerabilities/11180

CVSS

Base:	1.2
Impact:	2.9
Exploitability:	1.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:H/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

30-10-2018 - 16:26

Objavljeno

31-12-2003 - 05:00