Gentoo Security Advisory GLSA 200409-11 (star)

The remote host is missing updates announced in advisory GLSA 200409-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200409-11 (star)

The remote host is missing updates announced in advisory GLSA 200409-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2004-0850

Star before 1.5alpha46 does not drop the effective user ID euid before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program...

CVE-2004-0850

CVE-2004-0850 affects the Star archiver. Star versions before 1.5_alpha46 do not drop the effective user ID when invoking the program specified by the RSH environment variable, allowing a local user to gain privileges by referencing a malicious program. The issue is a Suid/root vulnerability with...

CVE-2004-0850

Star before 1.5alpha46 does not drop the effective user ID euid before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program...