CVE-2016-4444

The allowexecmod plugin for setroubleshoot before 3.2.23 allows local users to execute arbitrary commands by triggering an execmod SELinux denial with a crafted binary filename, related to the commands.getstatusoutput function...

CVE-2016-4444

The allowexecmod plugin for setroubleshoot before 3.2.23 allows local users to execute arbitrary commands by triggering an execmod SELinux denial with a crafted binary filename, related to the commands.getstatusoutput function...

CVE-2016-4444

The allowexecmod plugin for setroubleshoot before 3.2.23 allows local users to execute arbitrary commands by triggering an execmod SELinux denial with a crafted binary filename, related to the commands.getstatusoutput function...

CVE-2016-4444

CVE-2016-4444 details (from provided docs): The vulnerability affects the setroubleshoot ecosystem (the setroubleshoot package and its setroubleshoot-plugins) where an execmod denial can be triggered by crafting a binary filename. This allows a local user to execute arbitrary commands via the SEL...

Red Hat Enterprise Linux setroubleshoot allow_execmod plugin shell command injection vulnerability

Red Hat Enterprise Linux RHEL is a Linux operating system maintained and distributed by Red Hat for business users. setroubleshoot is one of the troubleshooting tools. A shell command injection vulnerability exists in the allowexecmod plugin in RHEL's setroubleshoot. A local attacker could exploi...