Sun Solaris tcsh(1) contains a vulnerability in the built-in ls-F command that could allow an unprivileged user to create or remove files or gain privileges of another user.
A vulnerability in the built-in ls-F command of the Sun Solaris tcsh(1) may allow an intruder to create or remove files or gain privileges of another user. Note that only Solaris 8 is affected by this issue. Solaris 7 and 9 are not affected.
A local user could create or remove files or gain privileges of another user, possibly root.
Thanks to Sun Microsystems for the information contained in their security advisory.
This document was written by Damon Morda.
|Date First Published:||2004-01-15|
|Date Last Updated:||2004-01-16 14:28 UTC|