Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0109Linux vulnerability

5 documents4 sources
Severity
1.2LOWNVD
EPSS
0.3%
top 45.37%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Suse Linux
Timeline
PublishedMar 12
Latest updateApr 30

Description

rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file.

CVSS vector

AV:L/AC:H/C:N/I:P/A:NExploitability: 1.9 | Impact: 2.9

Affected Packages1 packages

NVDsuse/suse_linux5 versions+4

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-q8rh-mh54-r97r: rctab in SuSE 72022-04-30
CVEList
CVE-2001-0109: rctab in SuSE 72001-05-07

💥Exploits & PoCs

2
Exploit-DB
SuSE 6.x/7.0 - MkDir Error Handling rctab Race Condition (2)2001-01-13
Exploit-DB
SuSE 6.x/7.0 - MkDir Error Handling rctab Race Condition (1)2001-01-13
CVE-2001-0109 — Suse Linux vulnerability | cvebase