Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6559

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-6559
Last Modified 31 Mar 2009 12:00:00
Published 30 Mar 2009 04:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-6559

Summary

Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. (dot dot) sequences that point to a directory containing a file whose name includes shell metacharacters.

Vulnerable Systems

Operating System

  • Sco Unixware 7.1.4

Application

  • Sco Reliantha 1.1.4


References

BID - 28625

OSVDB - 51234

MILW0RM - 5357

SECUNIA - 30921

SCO - SCOSA-2008.3


Last Updated: 27 May 2016 10:49:14