aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2000-04-26T04:00:00

Updated: 2024-08-08T05:14:21.285Z

Reserved: 2000-04-26T00:00:00

Link: CVE-2000-0293

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2000-05-02T04:00:00.000

Modified: 2024-11-20T23:32:10.257

Link: CVE-2000-0293

cve-icon Redhat

No data.