Lucene search

K
cve[email protected]CVE-2007-0895
HistoryFeb 13, 2007 - 1:28 a.m.

CVE-2007-0895

2007-02-1301:28:00
NVD-CWE-Other
web.nvd.nist.gov
31
cve-2007-0895
race condition
directory deletion
solaris
security vulnerability

6.1 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.6%

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a โ€œโ€ฆโ€ directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

6.1 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.6%