LDAP Account Manager (LAM) lamdaemon.pl PATH Subversion Local Privilege Escalation

2006-03-01T20:27:48
ID OSVDB:35457
Type osvdb
Reporter OSVDB
Modified 2006-03-01T20:27:48

Description

Solution Description

Upgrade to version 1.0.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://lam.cvs.sourceforge.net/lam/lam/lib/lamdaemon.pl Vendor Specific News/Changelog Entry: http://lam.cvs.sourceforge.net/lam/lam/lib/lamdaemon.pl?r1=1.32&r2=1.33 Vendor Specific News/Changelog Entry: http://lam.sourceforge.net/changelog/index.htm Secunia Advisory ID:25157 Other Advisory URL: http://www.us.debian.org/security/2007/dsa-1287 CVE-2006-7191 Bugtraq ID: 23857