CVE-2003-1073: Race Condition
First published: Wed Dec 31 2003(Updated: )
A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SunOS | =5.7 | |
| SunOS | =5.5 | |
| SunOS | =5.8 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =9.0 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =7.0 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =9.0 | |
| SunOS | =5.5.1 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =2.6 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =8.0 | |
| SunOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-50161-1
- http://secunia.com/advisories/7960/
- http://www.securityfocus.com/archive/1/308577
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0044.html
- http://isec.pl/vulnerabilities/isec-0008-sun-at.txt
- http://www.ciac.org/ciac/bulletins/n-070.shtml
- http://www.securityfocus.com/bid/6692
- http://www.securityfocus.com/bid/6693
- http://www.securitytracker.com/id?1005994
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11180
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11179
Frequently Asked Questions
What is the severity of CVE-2003-1073?
CVE-2003-1073 is classified as a moderate severity vulnerability due to its impact on local user file deletion.
How does CVE-2003-1073 work?
CVE-2003-1073 exploits a race condition in the at command allowing users to delete arbitrary files through modified job names.
Who is affected by CVE-2003-1073?
CVE-2003-1073 affects local users on Solaris versions 2.6 through 9, inclusive.
How can I protect my system from CVE-2003-1073?
To protect against CVE-2003-1073, avoid using the at command with untrusted input and restrict local user permissions.
Is there a patch available for CVE-2003-1073?
While specific patches may vary, users should consult their Solaris documentation for recommended updates to mitigate CVE-2003-1073.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/sun
- canonical/sunos
- version/sunos/5.7
- version/sunos/5.5
- version/sunos/5.8
- canonical/oracle solaris and zettabyte file system (zfs)
- version/oracle solaris and zettabyte file system (zfs)/9.0
- version/oracle solaris and zettabyte file system (zfs)/7.0
- version/sunos/5.5.1
- version/oracle solaris and zettabyte file system (zfs)/2.6
- version/oracle solaris and zettabyte file system (zfs)/8.0