← back
CVE-2001-1145

CVE-2001-1145

EPSS 0.3%
fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perform dangerous actions on the wrong directories.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:40.fts.v1.1.aschttp://archives.neohapsis.com/archives/netbsd/2001-q3/0204.htmlhttp://www.iss.net/security_center/static/8715.phphttp://www.openbsd.org/errata28.htmlhttp://www.osvdb.org/5466http://www.securityfocus.com/bid/3205