N/A

Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a ".." directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435.

N/A

N/A

Solaris 竞争条件权限管理和访问控制漏洞

回归目录删除部分以及(1)-r或(2)Solaris 8版本至20070208版本之前的10版本的rm中的-R选项中存在竞争情况。本地用户通过把一个低级的目录移至一个被删除的高级目录位置上，像用户运行的rm一样，删除文件和目录，这会引起rm移至一个比预想要高级的".."目录，并可能移至根文件系统上。该漏洞与CVE-2002-0435相似。

N/A

N/A