Description
rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.
References (8)
Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/36611
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26024
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35334
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2494
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26210
Patch vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1
Vendor Advisory x_refsource_confirm
http://support.avaya.com/elmodocs2/security/ASA-2007-319.htm
Scores
EPSS
0.0005
EPSS Percentile
15.1%
Details
Status
published
Products (3)
sun/sunos
5.8
sun/sunos
5.9
sun/sunos
5.10
Published
Jul 12, 2007
Tracked Since
Feb 18, 2026