chkstat in SuSE Linux 9.0 up to and including 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse suse linux 9.1 |
||
novell suse linux 10.0 |
||
suse suse linux 9.3 |
||
suse suse linux 9.2 |
||
suse suse linux 9.0 |