3.7 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
38.2%
chkrootkit is a tool to locally check for signs of a rootkit.
When /tmp is mounted without the noexec option chkrootkit will execute files in /tmp with root privileges.
A local attacker could possibly execute arbitrary code with root privileges.
Users should mount /tmp with noexec option.
All chkrootkit users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-forensics/chkrootkit-0.50"
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | app-forensics/chkrootkit | < 0.50 | UNKNOWN |