bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/solaris/local/22203.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

9 lines
No EOL
537 B
Text
Raw Permalink Blame History

source: https://www.securityfocus.com/bid/6692//info
The at utility shipped with Sun Solaris may be prone to an issue which may allow attackers to delete arbitrary files on the system.
The vulnerability occurs when using at with the '-r' option. This option is used to remove previously scheduled at jobs. The vulnerability exists because at does not properly sanitize parameters submitted as part of the -r commandline option.
A local attacker can cause at to delete arbitrary files on the system.
/usr/bin/at -r ../../../../tmp/foo
Reference in a new issue View git blame Copy permalink