Tolis Group: Security Vulnerabilities
Buffer overflow in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via a long command line argument.
CVSS Score
7.2
EPSS Score
0.001
Published
2003-08-18
Format string vulnerability in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via format string specifiers in a command line argument.
CVSS Score
7.2
EPSS Score
0.003
Published
2003-08-18
xbru in BRU Workstation 17.0 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the xbru_dscheck.dd temporary file.
CVSS Score
6.2
EPSS Score
0.004
Published
2003-04-02
setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file.
CVSS Score
7.2
EPSS Score
0.001
Published
2002-05-16
BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-06-05