3 matches found
CVE-2003-1073
A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. dot dot sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes pla...
CVE-2003-1073
CVE-2003-1073 describes a race condition in the Solaris at command (affecting Solaris 2.6 through 9) that allows local users to delete arbitrary files. The flaw occurs when a -r argument containing .. sequences in a job name passes the permission check but before the deletion actually happens, en...
CVE-2003-1073
A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. dot dot sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes pla...