Описание
Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sun:solstice_adminsuite:2.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.1:*:x86:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.2:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.2:*:x86:*:*:*:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
6.2 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
около 3 лет назад
Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.
EPSS
Процентиль: 12%
0.0004
Низкий
6.2 Medium
CVSS2
Дефекты
NVD-CWE-Other