An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By…
trellix·CWE-274·Published 2018-09-18
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.
Un usuario sin privilegios puede eliminar archivos arbitrarios en un sistema Linux que ejecuta ENSLTP 10.5.1, 10.5.0 y 10.2.3 Hotfix 1246778 y anteriores. Mediante la explotación de una condición de carrera TOCTOU (Time-of-check to Time-of-use) durante una secuencia específica de escaneo, el usuario sin privilegios puede realizar un escalado de privilegios para eliminar archivos arbitrarios.
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 2.0 | Primary | NVD | 3.3 | 3.4 | 4.9 | AV:L/AC:M/Au:N/C:N/I:P/A:P |
| 3.0 | Primary | cve.org | 5.6 | — | — | CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L |
| 3.0 | Primary | cve.org | 5.6 | — | — | CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L |
| 3.0 | Secondary | NVD | 5.6 | 1.3 | 4.2 | CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L |
| 3.1 | Primary | NVD | 5.3 | 1.0 | 4.2 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L |