CVE-2002-2323

2007-10-2619:00:00

mitre

www.cve.org

sun pc netlink

acl

vulnerability

symbolic links

access restrictions

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

65.0%

JSON

Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions.

References

sunsolve.sun.com/search/document.do?assetkey=1-26-27807-1

www.iss.net/security_center/static/9665.php

www.securityfocus.com/bid/5281