Local File Permissions Vulnerability in HP JetAdmin for Solaris
CVE-1999-1433

Currently unrated

Key Information:

Vendor: HP
Status: Jetadmin
Vendor: CVE Published:; 15 July 1998

Summary

A vulnerability in HP JetAdmin D.01.09 for Solaris allows local users to perform a symlink attack, enabling them to modify the permissions of arbitrary files through manipulation of the /tmp/jetadmin.log file. This behavior can lead to unauthorized access and potential exploitation of other local resources. Proper safeguards should be implemented to avoid symlink abuse and protect system integrity.

References

http://marc.info/?l=bugtraq&m=90221104525988&w=2

mailing-listx_refsource_BUGTRAQ

http://marc.info/?l=bugtraq&m=90221104526067&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/157

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Aug 31, 2001
Vulnerability published
Jul 15, 1998