New Search

A Security Vulnerability in the Solaris dircmp(1) Shell Script may Allow Overwriting of Arbitrary Files

oval:org.mitre.oval:def:6183

Race condition in the dircmp script in Sun Solaris 8 through 10 and OpenSolaris snv_01 through snv_111 allows local users to overwrite arbitrary files probably involving a symlink attack on temporary files.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 8
  • Sun Solaris 10
  • Sun Solaris 9
Class:
vulnerability
Reference(s):
  • CVE-2009-1207
Product(s):