• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Windows Media Player For Solaris Default World Writeable Permissions Vulnerability

A vulnerability has been reported for Windows Media Player 6.3 for Solaris. Reportedly, the installer will ignore the existing system umask and install files with world writeable permissions.

An attacker can exploit this vulnerability to possibly obtain elevated privileges to the vulnerable system.