Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-6889

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2013-6889
Last Modified 09 May 2014 10:28:37
Published 08 May 2014 10:29:12
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2013-6889

Summary

GNU Rush 1.7 does not properly drop privileges, which allows local users to read arbitrary files via the --lint option.

Vulnerable Systems

Application

  • Gnu Rush 1.7


References

CONFIRM - http://git.gnu.org.ua/gitweb?p=rush.git;a=commit;h=00bdccd429517f12dbf37ab4397ddec3e51a2738

CONFIRM - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=733505


Last Updated: 27 May 2016 11:05:13