CVE-2006-4842
CVE-2006-4842 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:P/A:P
The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.
Learn more about our Cis Benchmark Audit For Oracle Solaris.