2 matches found
EUVD-2026-24992
install: TOCTOU symlink race unlink-then-create without OEXCL allows arbitrary file overwrite...
patchadd.pl
Here is an exploit to an old bug for patchadd in Solaris. It exploits a symlink vulnerability to clobber files with output from patchadd. This was written and tested on Solaris 2.8 Sparc with the current patch cluster applied. -- Larry http://vapid.dhs.org:8080 !/usr/local/bin/perl Exploit for...