aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Suse_linux | Suse | 6.0 (including) | 6.0 (including) |
| Suse_linux | Suse | 6.1 (including) | 6.1 (including) |
| Suse_linux | Suse | 6.1-alpha (including) | 6.1-alpha (including) |
| Suse_linux | Suse | 6.2 (including) | 6.2 (including) |
| Suse_linux | Suse | 6.3 (including) | 6.3 (including) |
| Suse_linux | Suse | 6.3-alpha (including) | 6.3-alpha (including) |
| Suse_linux | Suse | 6.4 (including) | 6.4 (including) |