PT-2002-3035 · Sun · Sun Pc Netlink

Publicado

2002-12-31

Atualizado

2024-01-25

CVE-2002-2323

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Sun PC NetLink versions 1.0 through 1.2

Description The issue is related to the improper setting of the access control list (ACL) for files and directories that use symbolic links and have been restored from backup. This could allow local or remote attackers to bypass intended access restrictions.

Recommendations For Sun PC NetLink versions 1.0 through 1.2, consider restricting access to files and directories that use symbolic links until a proper fix is applied to ensure the correct setting of ACLs. As a temporary workaround, review and manually set the ACLs for affected files and directories to prevent unauthorized access.

Correção

Link Following

Improper Preservation of Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-59CWE-281

Identificadores relacionados

CVE-2002-2323

Produtos afetados

Sun Pc Netlink

PT-2002-3035 · Sun · Sun Pc Netlink

CVE-2002-2323

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5