Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d argument to dumper, (3) the -c argument to crttrap, or (4) using the Watcom sample utility.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/bugtraq/2002-05/0292.html | Broken Link Exploit Vendor Advisory |
http://www.iss.net/security_center/static/9231.php | Broken Link Patch Vendor Advisory |
http://www.securityfocus.com/bid/4901 | Broken Link Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/4902 | Broken Link Exploit Patch Third Party Advisory VDB Entry Vendor Advisory |
http://www.securityfocus.com/bid/4903 | Broken Link Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/4904 | Broken Link Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/9232 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/9233 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/9234 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2002-07-26T04:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2002-07-25T00:00:00
Link: CVE-2002-0793
JSON object: View
NVD Information
Status : Analyzed
Published: 2002-08-12T04:00:00.000
Modified: 2024-01-26T17:18:46.507
Link: CVE-2002-0793
JSON object: View
Redhat Information
No data.
CWE