CVE-2001-1494

Published: Jun 21, 2005

Modified: Aug 8, 2024

PUBLISHED

Description

script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

16280

vdb-entry

x_refsource_BID

RHSA-2005:782

vendor-advisory

x_refsource_REDHAT

20011212 Silly 'script' hardlink bug

mailing-list

x_refsource_BUGTRAQ

oval:org.mitre.oval:def:10723

vdb-entry

signature

x_refsource_OVAL

20011213 Silly 'script' hardlink bug - fixed

mailing-list

x_refsource_BUGTRAQ

16785

third-party-advisory

x_refsource_SECUNIA

util-linux-script-hardlink(7718)

vdb-entry

x_refsource_XF

http://support.avaya.com/elmodocs2/security/ASA-2006-014.htm

x_refsource_MISC

18502

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2001-1494

Description

Affected Products

References