CVE-2001-1145

Currently unrated

Key Information:

Vendor: OpenBSD
Status: OpenBSD; Netbsd; FreeBSD
Vendor: CVE Published:; 17 August 2001

Summary

fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perform dangerous actions on the wrong directories.

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD...

vendor-advisoryx_refsource_FREEBSD

http://www.osvdb.org/5466

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/3205

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Mar 15, 2002
Vulnerability published
Aug 17, 2001