Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0293. PoCs published by Peter_M.
AI-analyzed exploit summary This exploit leverages a vulnerability in SuSE Linux 6.3 and prior where setting MAX_DAYS_IN_TMP in /etc/rc.config allows local users to delete arbitrary files in the root directory. The PoC creates a directory with a space in its name to bypass the intended cleanup mechanism.
Description
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
Exploits (1)
This exploit leverages a vulnerability in SuSE Linux 6.3 and prior where setting MAX_DAYS_IN_TMP in /etc/rc.config allows local users to delete arbitrary files in the root directory. The PoC creates a directory with a space in its name to bypass the intended cleanup mechanism.