New Search

Shell Redirect Symlink Attack Vulnerability

oval:org.mitre.oval:def:4047

Multiple shell programs on various Unix systems including (1) tcsh (2) csh (3) sh and (4) bash follow symlinks when processing << redirects (aka here-documents or in-here documents) which allows local users to overwrite files of other users via a symlink attack.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 8
  • Sun Solaris 7
Class:
vulnerability
Reference(s):
  • CVE-2000-1134
Product(s):
  • TENEX C Shell (tcsh)
  • Bourne Again Shell (bash)
  • Korn Shell (ksh)
  • Bourne Shell (sh)
  • C Shell (csh)