7.2

CVE-2008-6559

Exploit
Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. (dot dot) sequences that point to a directory containing a file whose name includes shell metacharacters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ScoReliantha Version1.1.4
ScoUnixware Version7.1.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.8% 0.518
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt
Vendor Advisory
http://secunia.com/advisories/30921
Vendor Advisory
http://www.osvdb.org/51234
http://www.securityfocus.com/bid/28625
Patch
Exploit
https://www.exploit-db.com/exploits/5357