Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-1073 — Race Condition in Solaris

4 documents4 sources

Severity

1.2LOWNVD

EPSS

0.2%

top 53.81%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

SUN Solaris SUN Sunos

Timeline

PublishedDec 31

Latest updateApr 29

Description

A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place.

CVSS vector

AV:L/AC:H/C:N/I:P/A:NExploitability: 1.9 | Impact: 2.9

Affected Packages2 packages

▶NVDsun/solaris4 versions+3

▶NVDsun/sunos4 versions+3

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-r2ff-mfrc-wmc3: A race condition in the at command for Solaris 2↗2022-04-29

▶

CVEList

CVE-2003-1073: A race condition in the at command for Solaris 2↗2005-02-08

▶

💥Exploits & PoCs

Exploit-DB

Sun Solaris 2.5/2.6/7.0/8/9 AT Command - Arbitrary File Deletion↗2003-01-27

▶