Exploitation Summary
EIP tracks 1 public exploit for CVE-1999-1433. PoCs published by emffmmadffsdf.
AI-analyzed exploit summary This exploit leverages a symbolic link vulnerability in HP JetAdmin Rev. D.01.09, where the software fails to check if the log file is a symlink before creating it with world-writable permissions. An attacker can create a symlink from /tmp/jetadmin.log to a sensitive file (e.g., /.rhosts) to escalate privileges.
Description
HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a symlink attack on the /tmp/jetadmin.log file.
Exploits (1)
This exploit leverages a symbolic link vulnerability in HP JetAdmin Rev. D.01.09, where the software fails to check if the log file is a symlink before creating it with world-writable permissions. An attacker can create a symlink from /tmp/jetadmin.log to a sensitive file (e.g., /.rhosts) to escalate privileges.