Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program.
References
Link | Resource |
---|---|
ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt | Patch Vendor Advisory |
http://osvdb.org/46706 | |
http://osvdb.org/46707 | |
http://secunia.com/advisories/30921 | Vendor Advisory |
http://www.securityfocus.com/bid/28624 | Exploit |
https://www.exploit-db.com/exploits/5356 |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2009-03-30 20:30
Updated : 2024-02-04 17:33
NVD link : CVE-2008-6558
Mitre link : CVE-2008-6558
CVE.ORG link : CVE-2008-6558
JSON object : View
Products Affected
sco
- unixware
unixware
- reliantha
CWE
CWE-20
Improper Input Validation