Computer Security
[EN] securityvulns.ru no-pyccku


Sun iPlanet symbolic links problem
Published:15.06.2006
Source:
SecurityVulns ID:6266
Type:local
Threat Level:
5/10
Description:pipe_master suid root application tries to read configuration from msg.conf file with relative path without checking for symbolic links. It makes it possible to read few trings from any file with symbolic link.
Affected:SUN : iPlanet Messaging Server 5.2
Original documentdocumentphp0t, [Full-disclosure] Sun iPlanet Messaging Server 5.2 root password compromise (15.06.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod