CVE-2003-1099 Information

Description

shar on HP-UX B.11.00 B.11.04 and B.11.11 creates temporary files with predictable names in /tmp which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack.

Reference

http://secunia.com/advisories/10339 http://www.ciac.org/ciac/bulletins/o-032.shtml http://www.kb.cert.org/vuls/id/509454 http://www.kb.cert.org/vuls/id/CRDY-5VFQA3 http://www.securityfocus.com/bid/9141 https://exchange.xforce.ibmcloud.com/vulnerabilities/13882 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5788