7.2
CVE-2008-6559
- EPSS 0.8%
- Veröffentlicht 30.03.2009 20:30:00
- Zuletzt bearbeitet 16.06.2026 23:02:27
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. (dot dot) sequences that point to a directory containing a file whose name includes shell metacharacters.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.8% | 0.518 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt
http://secunia.com/advisories/30921
http://www.osvdb.org/51234
http://www.securityfocus.com/bid/28625
https://www.exploit-db.com/exploits/5357