CVE-2003-1575
Last modified
CVE-2003-1575 is a vulnerability of currently unknown severity. VERITAS File System (VxFS) 3.3.3, 3.4, and 3.5 before MP1 Rolling Patch 02 for Sun Solaris 2.5.1 through 9 does not properly implement inheritance of default ACLs in certain circumstances related to the characteristics of a directory inode, which allows local users to bypass intended file permissions by accessing a file on a VxFS filesystem.. EPSS estimates a 0.29% chance of exploitation in the next 30 days.
Description
VERITAS File System (VxFS) 3.3.3, 3.4, and 3.5 before MP1 Rolling Patch 02 for Sun Solaris 2.5.1 through 9 does not properly implement inheritance of default ACLs in certain circumstances related to the characteristics of a directory inode, which allows local users to bypass intended file permissions by accessing a file on a VxFS filesystem.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Vxfs | 3.3.3 |
| Symantec | Vxfs | 3.4 |
| Symantec | Vxfs | 3.5 |
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-200161-1Patch, Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-200161-1Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2003-1575?
How severe is CVE-2003-1575?
How do I fix CVE-2003-1575?
Are you affected by CVE-2003-1575?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST