Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
conectiva linux 4.0 |
||
conectiva linux 4.0es |
||
immunix immunix 6.2 |
||
conectiva linux 4.1 |
||
conectiva linux 4.2 |
||
conectiva linux 5.0 |
||
conectiva linux 5.1 |
||
caldera openlinux eserver 2.3 |
||
hp hp-ux 11.11 |
||
redhat linux 6.0 |
||
redhat linux 6.1 |
||
caldera openlinux |
||
caldera openlinux edesktop 2.4 |
||
mandrakesoft mandrake linux 7.2 |
||
redhat linux 5.2 |
||
mandrakesoft mandrake linux 6.0 |
||
mandrakesoft mandrake linux 6.1 |
||
redhat linux 6.2 |
||
redhat linux 6.2e |
||
mandrakesoft mandrake linux 7.0 |
||
mandrakesoft mandrake linux 7.1 |
||
suse suse linux 7.0 |