CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
caldera unixware 7.1.0 |