PT-2001-1330 · Sun · Sun Solaris

Published

2001-02-12

Updated

2018-10-30

CVE-2001-0095

CVSS v2.0

1.2

Low

Vector

AV:L/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Sun Solaris versions 2.7 through 2.8

Description: The issue allows local users to overwrite arbitrary files via a symlink attack on the sman PID temporary file.

Recommendations: For Sun Solaris versions 2.7 and 2.8, consider restricting access to the sman PID temporary file to prevent symlink attacks until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0095

Affected Products

Sun Solaris

PT-2001-1330 · Sun · Sun Solaris

CVE-2001-0095

Related Identifiers

Affected Products

References · 8