Arbitrary World-Writeable File Creation Vulnerability in HP-UX 11.11, 11.04, and 11.00

Arbitrary World-Writeable File Creation Vulnerability in HP-UX 11.11, 11.04, and 11.00

CVE-2001-1256 · LOW Severity

AV:L/AC:H/AU:N/C:N/I:P/A:N

kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files.

Learn more about our User Device Pen Test.