Vulnerabilities > CVE-2001-1092 - Symbolic Link vulnerability in Digital Unix MSGCHK MH_PROFILE

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
compaq
exploit available

Summary

msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink attack on the .mh_profile file.

Vulnerable Configurations

Part Description Count
OS
Compaq
4

Exploit-Db

descriptionDigital Unix 4.0 MSGCHK MH_PROFILE Symbolic Link Vulnerability. CVE-2001-1092. Local exploit for unix platform
idEDB-ID:21107
last seen2016-02-02
modified2001-09-10
published2001-09-10
reporterseo
sourcehttps://www.exploit-db.com/download/21107/
titleDigital Unix 4.0 MSGCHK MH_PROFILE Symbolic Link Vulnerability