2 matches found
Fedora Core 5 : beagle-0.2.3-4 (2006-188)
Some of the wrapper scripts including beagle-status looked in the current directory for files with a specific name and ran that instead of the binary in the path. All such cases have been fixed in this release. Note that Tenable Network Security has extracted the preceding description block...
CVE-2006-1296
Beagle 0.2.2.1 is affected by an Untrusted search path vulnerability that may allow local privilege escalation when a malicious beagle-info executable is present in the current working directory or in directories listed in PATH. The description indicates that wrapper scripts (e.g., beagle-status)...