Novell Identity Manager Arbitrary Command Execution Vulnerability

2006-08-18T00:00:00
ID EDB-ID:28427
Type exploitdb
Reporter anonymous
Modified 2006-08-18T00:00:00

Description

Novell Identity Manager Arbitrary Command Execution Vulnerability. CVE-2006-4310 . Local exploit for novell platform

                                        
                                            source: http://www.securityfocus.com/bid/19688/info

Novell Identity Manager is prone to an arbitrary command-execution vulnerability. 

A local attacker can exploit this issue to execute arbitrary commands with superuser privileges. Exploiting this issue allows attackers to completely compromise affected computers.

CMD="usermod -c $gecos"