PT-1997-1184 · Gnu · Sort

Published

1997-10-06

Updated

2016-10-18

CVE-1999-1095

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions sort (affected versions not specified)

Description The issue allows local users to modify arbitrary files that are writable by the user running sort, as it creates temporary files and follows symbolic links. This is observed in programs such as updatedb that use sort.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1095

Affected Products

Sort

PT-1997-1184 · Gnu · Sort

CVE-1999-1095

Related Identifiers

Affected Products

References · 4