Vulnerability Name: | CVE-2001-0079 (CCN-6126) | ||||||||
Assigned: | 2000-12-13 | ||||||||
Published: | 2000-12-13 | ||||||||
Updated: | 2008-09-05 | ||||||||
Summary: | Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file. | ||||||||
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||
References: | Source: BUGTRAQ Type: Exploit, Vendor Advisory 20001213 STM symlink Vulnerability Source: CCN Type: BugTraq Mailing List, Wed Dec 13 2000 - 04:33:21 CST STM symlink Vulnerability Source: MITRE Type: CNA CVE-2001-0079 Source: CCN Type: OSVDB ID: 9616 HP-UX Support Tools Manager tool_stat.txt Symlink Arbitrary File Overwrite Source: CCN Type: BID-2158 HP-UX stm Race Condition Vulnerability Source: XF Type: UNKNOWN stm-log-files-symlink(6126) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||
BACK |