CVE-2006-4842
CVE-2006-4842
The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.
Affected products
n/a · n/apublic PoCs found — 7
cve_referencewww.exploit-db.com/exploits/45433/unverifiedexploitdbwww.exploit-db.com/exploits/45433unverifiedexploitdbwww.exploit-db.com/exploits/2641unverifiedexploitdbwww.exploit-db.com/exploits/2543unverifiedexploitdbwww.exploit-db.com/exploits/2569unverifiedexploitdbwww.exploit-db.com/exploits/28788unverifiedexploitdbwww.exploit-db.com/exploits/28789unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=418http://secunia.com/advisories/22348http://securitytracker.com/id?1017050https://exchange.xforce.ibmcloud.com/vulnerabilities/29489https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1819http://sunsolve.sun.com/search/document.do?assetkey=1-26-102658-1https://www.exploit-db.com/exploits/45433/http://www.securityfocus.com/archive/1/448691/100/0/threadedhttp://www.securityfocus.com/bid/20471http://www.vupen.com/english/advisories/2006/4016