6.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
38.3%
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option.