4 matches found
CVE-2006-6639
Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local users to gain privileges via unspecified vectors related to executing 1 the cp program, 2 the mail program, or 3 the program specified in the postchange configuration line...
CVE-2002-2221
The CVE-2002-2221 entry describes an untrusted search path vulnerability in chetcpasswd (Pedro Lineu Orso) versions 2.4.1 and earlier. The underlying issue is a modified PATH that can reference a malicious cp binary, enabling local users to gain privileges. Documented impact is local privilege es...
CVE-2006-6639
Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local users to gain privileges via unspecified vectors related to executing 1 the cp program, 2 the mail program, or 3 the program specified in the postchange configuration line...
CVE-2006-6639
CVE-2006-6639 affects chetcpasswd 2.4.1 and earlier. Red Hat entries describe an Untrusted search path vulnerability: local users can gain privileges by a modified PATH that references a malicious cp binary. This relates to the program execution context for chetcpasswd (and potentially the cp/mai...