X

The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 100881 Possible Security Issue with XView Text Clipboard

Guest Author
Product: Solaris 2.5, Solaris 2.5.1, Solaris 2.6 Operating System, Solaris 7 Operating System, Solaris 8 Operating System

An unprivileged, local user might setup a scenario so that under certain circumstances an XView application on exit corrupts a system or user file.

Only files for which the exiting XView application has modify permission (based only on the applications current user/group ID and file permissions) are at risk. Therefore, XView applications running with root access rights under certain circumstances pose a risk to system files if no counter measures are taken (please see the "Workaround" section below).

Avoidance: Patch, Upgrade, Workaround
State: Resolved
First released: 09-Jul-2001

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.