AIX 3.x bugfiler Arbitrary File ...

- AV AC AU C I A
发布: 1997-09-08
修订: 2018-10-17

A vulnerability exists in AIX 3.* versions of bugfiler, a utility which automates the process of reporting an filing system bugs. Bugfiler, installed setuid root, creates files in a directory specified by the user invoking the program (example: $/lib/bugfiler -b <user> directory>). It may be possible for an attacker to create files in arbitrary directories that are owned by attacker-specified users. This may result in an elevation of privileges for the attacker. Further technical details about this vulnerability are not known.

0%
当前有1条漏洞利用/PoC
产品及版本信息(CPE)暂不可用