Lucene search

[email protected]CVE-2007-0895

HistoryFeb 13, 2007 - 1:28 a.m.

CVE-2007-0895

2007-02-1301:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0895

race condition

directory deletion

solaris

security vulnerability

6.1 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.6%

JSON

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a “…” directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

CPENameOperatorVersion
sun:sunossun sunoseq5.8
sun:solarissun solariseq10.0
sun:solarissun solariseq9.0

CPE	Name	Operator	Version
sun:sunos	sun sunos	eq	5.8
sun:solaris	sun solaris	eq	10.0
sun:solaris	sun solaris	eq	9.0

References

secunia.com/advisories/24082

secunia.com/advisories/24405

sunsolve.sun.com/search/document.do?assetkey=1-26-102782-1

support.avaya.com/elmodocs2/security/ASA-2007-102.htm

www.osvdb.org/31880

www.vupen.com/english/advisories/2007/0543

exchange.xforce.ibmcloud.com/vulnerabilities/32399

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8272

6.1 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2007-0895

prion1 securityvulns1 nessus8 cve1 redhat1 ubuntucve1