Info

Disclosure

Feb 08, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Solaris contains a race condition flaw in handling recursive directory deletion via the "rm" command using the "-r" or "-R" option. This may allow local users to trigger the deletion of files and directories by moving lower level directories to a higher level, possible resulting in a DoS condition.

Classification

Location: Local Access Required
Attack Type: Denial of Service, Race Condition
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Sun Microsystems, Inc. has released a set of patches to address this vulnerability. Vendor patch: Solaris SPARC 8 apply patch 124969-01 or later Solaris SPARC 9 apply patch 123372-02 or later Solaris SPARC 10 apply patch 124244-01 or later Solaris x86 8 apply patch 124970-01 or later Solaris x86 9 apply patch 123373-02 or later Solaris x86 10 apply patch 124245-01 or later

Products

Sun Microsystems, Inc.	Solaris SPARC	8 without patch 124969-01
		9 without patch 123372-02
		10 without patch 124244-01
	Solaris x86	8 without patch 124970-01
		9 without patch 123373-02
		10 without patch 124245-01

References

CVE ID: 2007-0895 (see also: NVD)
Secunia Advisory ID: 24082 24405
SCIP VulDB ID: 2910
ISS X-Force ID: 32399
Related OSVDB ID: 5294
VUPEN Advisory: ADV-2007-0543
Vendor Specific Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102782-1
Other Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2007-102.htm
Vendor URL: http://www.sun.com
Keyword: Sun Alert ID: 102782

Credit

Jim Meyering - jimmeyering.net -

Direct URL: http://osvdb.org/31880