Executive Summary

Informations
Name CVE-2003-1073 First vendor Publication 2003-12-31
Vendor Cve Last vendor Modification 2018-10-30

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:H/Au:N/C:N/I:P/A:N)
Cvss Base Score 1.2 Attack Range Local
Cvss Impact Score 2.9 Attack Complexity High
Cvss Expoit Score 1.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1073

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 4
Os 6

OpenVAS Exploits

Date Description
2009-06-03 Name : Solaris Update for at utility 114135-03
File : nvt/gb_solaris_114135_03.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
15142 Solaris at -r Argument Race Condition Arbitrary File Deletion

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/6692
http://www.securityfocus.com/bid/6693
BUGTRAQ http://www.securityfocus.com/archive/1/308577
CIAC http://www.ciac.org/ciac/bulletins/n-070.shtml
MISC http://isec.pl/vulnerabilities/isec-0008-sun-at.txt
SECTRACK http://www.securitytracker.com/id?1005994
SECUNIA http://secunia.com/advisories/7960/
SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-50161-1
VULNWATCH http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0044.html
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/11179
https://exchange.xforce.ibmcloud.com/vulnerabilities/11180

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
Date Informations
2024-02-02 01:02:24
  • Multiple Updates
2024-02-01 12:01:29
  • Multiple Updates
2023-09-05 12:02:17
  • Multiple Updates
2023-09-05 01:01:20
  • Multiple Updates
2023-09-02 12:02:19
  • Multiple Updates
2023-09-02 01:01:20
  • Multiple Updates
2023-08-12 12:02:49
  • Multiple Updates
2023-08-12 01:01:20
  • Multiple Updates
2023-08-11 12:02:24
  • Multiple Updates
2023-08-11 01:01:22
  • Multiple Updates
2023-08-06 12:02:13
  • Multiple Updates
2023-08-06 01:01:21
  • Multiple Updates
2023-08-04 12:02:17
  • Multiple Updates
2023-08-04 01:01:22
  • Multiple Updates
2023-07-14 12:02:15
  • Multiple Updates
2023-07-14 01:01:22
  • Multiple Updates
2023-03-29 01:02:17
  • Multiple Updates
2023-03-28 12:01:27
  • Multiple Updates
2022-10-11 12:02:00
  • Multiple Updates
2022-10-11 01:01:14
  • Multiple Updates
2021-05-04 12:02:10
  • Multiple Updates
2021-04-22 01:02:18
  • Multiple Updates
2020-05-23 00:15:34
  • Multiple Updates
2018-10-31 00:19:42
  • Multiple Updates
2017-07-11 12:01:20
  • Multiple Updates
2016-06-28 15:02:59
  • Multiple Updates
2016-04-26 12:39:55
  • Multiple Updates
2013-05-11 11:53:33
  • Multiple Updates