CVE

Id
4481  
CVE No.
CVE-2002-0087  
Status
Candidate  
Description
bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.  
Phase
Modified (20050528)  
Votes
ACCEPT(4) Balinsky, Cole, Foat, Green | NOOP(3) Christey, Wall, Ziese  
Comments
Christey> Consider adding BID:4318 | CHANGE> [Foat changed vote from NOOP to ACCEPT] | Christey> CONFIRM:http://www-1.ibm.com/support/manager.wss?rs=463&rt=0&org=sims&doc=93B3ED336951525385256B7D006A3CE3 | VULNWATCH:20020429 [VulnWatch] eSecurityOnline Security Advisory 4125 - Lotus Domino bindsock arbitrary file creation vulnerability | URL:http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0045.html  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
22062 4481 CVE-2002-0087 MISC:http://www.esecurityonline.com/advisories/eSO4125.asp  View
22063 4481 CVE-2002-0087 CONFIRM:http://www-1.ibm.com/support/docview.wss?rs=0&uid=swg21095671  View
22064 4481 CVE-2002-0087 BID:4318  View
22065 4481 CVE-2002-0087 URL:http://www.securityfocus.com/bid/4318  View
22066 4481 CVE-2002-0087 XF:lotus-domino-tmpfile-symlink(8586)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
64181 JVNDB-2001-000155 Lotus Domino の bindsock におけるシンボリックリンク攻撃を受ける脆弱性 Lotus Domino には、任意のユーザが書き込むことができ、かつ容易に予測できるファイル名の一時ファイルを作成することが可能である脆弱性が存在します。 CVE-2002-0087 4481 2.1 http://jvndb.jvn.jp/ja/contents/2001/JVNDB-2001-000155.html  View