Описание
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:sco:open_desktop:1.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:open_desktop:2.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:open_desktop:3.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:open_desktop_lite:3.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:openserver:3.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:unix:system_v386_3.2_operating_system:*:*:*:*:*:*:*
cpe:2.3:o:sco:unix:system_v386_3.2_operating_system_2.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:unix:system_v386_3.2_operating_system_4.0:*:*:*:*:*:*:*
cpe:2.3:o:sco:unix:system_v386_3.2_operating_system_4.x:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00724
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
около 3 лет назад
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
EPSS
Процентиль: 72%
0.00724
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other