Sign in Get started

← All advisories

Unrated severityNVD Advisory· Published Sep 10, 2001· Updated Apr 16, 2026

CVE-2001-1092

CVE-2001-1092

Description

msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink attack on the .mh_profile file.

Affected products

4

Compaq/Tru644 versions
cpe:2.3:o:compaq:tru64:4.0d:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:compaq:tru64:4.0d:*:*:*:*:*:*:*
- cpe:2.3:o:compaq:tru64:4.0e:*:*:*:*:*:*:*
- cpe:2.3:o:compaq:tru64:4.0f:*:*:*:*:*:*:*
- cpe:2.3:o:compaq:tru64:4.0g:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

www.securityfocus.com/archive/1/213238nvdExploitVendor Advisory
www.securityfocus.com/bid/3320nvdExploitVendor Advisory
www.kb.cert.org/vuls/id/440539nvdUS Government Resource
exchange.xforce.ibmcloud.com/vulnerabilities/7102nvd

News mentions

0

No linked articles in our index yet.