source: wwwsecurityfocuscom/bid/842/info
Certain versions of SCO Unixware ship with an exploitable version of the /usr/bin/uidadmin program The problem lies in that 'uidadmin' runs with root privileges and performs insecure writes to a scratch directory (/tmp/ in this instance) A malicious user may overwrite any existing file on the sys ...