SCO OpenServer不安全临时文件漏洞

漏洞信息详情

SCO OpenServer不安全临时文件漏洞

• CNNVD编号：CNNVD-200311-064
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2003-0872
  
• 漏洞类型：
  
  
  设计错误
  
• 发布时间：
  
  2003-11-17
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  sco
• 漏洞来源：
  Discovery is credi…

OpenServer 5.0.6之前版本的特定脚本存在漏洞。本地用户借助对临时文件的符号链接攻击覆盖文件并进行其他非法活动。

SCO has released updates for these issues.
SCO has released updated information concerning the previous advisory (CSSA-2003-SCO.27) and fix stating that an error has been found in the packaging of the fix. Users who have applied the fix should remove it and wait for a revised version.

来源: BID
名称: 8864
链接:http://www.securityfocus.com/bid/8864

来源: SCO
名称: CSSA-2003-SCO.27
链接:ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.27/CSSA-2003-SCO.27.txt