Lucene search

[email protected]CVE-2008-6558

HistoryMar 30, 2009 - 8:30 p.m.

CVE-2008-6558

2009-03-3020:30:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-6558

untrusted search path vulnerability

reliantha

sco unixware 7.1.4

root privileges

security vulnerability

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program.

CPENameOperatorVersion
sco:unixwaresco unixwareeq7.1.4
unixware:relianthaunixware relianthaeq1.1.4

CPE	Name	Operator	Version
sco:unixware	sco unixware	eq	7.1.4
unixware:reliantha	unixware reliantha	eq	1.1.4

References

ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt

osvdb.org/46706

osvdb.org/46707

secunia.com/advisories/30921

www.securityfocus.com/bid/28624

www.exploit-db.com/exploits/5356

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2008-6558

prion1