CVE-2006-4842

CVE-2006-4842 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.

Learn more about our Cis Benchmark Audit For Oracle Solaris.