Vulnerabilities > CVE-2000-0293 - Unspecified vulnerability in Suse Linux

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

suse

exploit available

NVD

Published: 2000-05-02

Updated: 2008-09-10

Summary

aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.

Vulnerable Configurations

Part	Description	Count
OS	Suse Suse Suse Linux 6.0 Suse Suse Linux 6.1 Suse Suse Linux 6.2 Suse Suse Linux 6.3 Suse Suse Linux 6.4	8

Exploit-Db

description	S.u.S.E. Linux 6.x Arbitrary File Deletion Vulnerability. CVE-2000-0293. Local exploit for linux platform
id	EDB-ID:19867
last seen	2016-02-02
modified	2000-04-21
published	2000-04-21
reporter	Peter_M
source	https://www.exploit-db.com/download/19867/
title	S.u.S.E. Linux 6.x - Arbitrary File Deletion Vulnerability

References

http://www.securityfocus.com/bid/1130