CVE-2007-0895

2007-02-1301:28:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

Percentile

15.9%

JSON

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a “…” directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

Affected configurations

Nvd

Node

sunsolarisMatch9.0sparc

sunsolarisMatch10.0sparc

sunsunosMatch5.8

VendorProductVersionCPE
sunsolaris9.0cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
sunsolaris10.0cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*
sunsunos5.8cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	9.0	cpe:2.3:o:sun:solaris:9.0::sparc:::::
sun	solaris	10.0	cpe:2.3:o:sun:solaris:10.0::sparc:::::
sun	sunos	5.8	cpe:2.3:o:sun:sunos:5.8:::::::*