Privilege Escalation via Hard Links in gzip (Solaris 8)

Privilege Escalation via Hard Links in gzip (Solaris 8)

CVE-2004-1349 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files.

Learn more about our Cis Benchmark Audit For Oracle Solaris.