Vulnerabilities > CVE-2002-1618 - Unspecified vulnerability in HP Hp-Ux and JFS
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
JFS (JFS3.1 and OnlineJFS) in HP-UX 10.20, 11.00, and 11.04 does not properly implement the sticky bit functionality, which could allow attackers to bypass intended restrictions on filesystems.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 | |
| OS | 3 |
Oval
| accepted | 2008-08-25T04:00:28.948-04:00 | ||||
| class | vulnerability | ||||
| contributors |
| ||||
| description | JFS (JFS3.1 and OnlineJFS) in HP-UX 10.20, 11.00, and 11.04 does not properly implement the sticky bit functionality, which could allow attackers to bypass intended restrictions on filesystems. | ||||
| family | unix | ||||
| id | oval:org.mitre.oval:def:5700 | ||||
| status | accepted | ||||
| submitted | 2008-07-10T16:22:36.000-04:00 | ||||
| title | OnLineJFS sticky bit does not function properly. | ||||
| version | 35 |
References
- http://www.kb.cert.org/vuls/id/248337
- http://www.kb.cert.org/vuls/id/248337
- http://www.securityfocus.com/advisories/4569
- http://www.securityfocus.com/advisories/4569
- http://www.securityfocus.com/bid/5979
- http://www.securityfocus.com/bid/5979
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10399
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10399
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5700
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5700