Lucene search
K

4 matches found

NVD
NVD
added 2008/04/07 5:44 p.m.23 views

CVE-2008-0310

Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST...

6.9CVSS6.4AI score0.01006EPSS
Exploits1References7
CVE
CVE
added 2008/04/07 5:0 p.m.49 views

CVE-2008-0310

CVE-2008-0310 describes a local privilege escalation in SCO UnixWare 7.1.4 before patch p534589. The vulnerability lies in the pkgadd command, which improperly handles an environment variable (likely PKGINST) during package installation, allowing a local user to traverse directories using ".." se...

6.9CVSS6.4AI score0.01006EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2008/04/07 5:0 p.m.26 views

CVE-2008-0310

Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST...

6.4AI score0.01006EPSS
Exploits1References7
securityvulns
securityvulns
added 2008/04/05 12:0 a.m.43 views

iDefense Security Advisory 04.03.08: SCO UnixWare pkgadd Directory Traversal Vulnerability

iDefense Security Advisory 04.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 03, 2008 I. BACKGROUND SCO UnixWare is a UNIX operating system that runs on many OEM platforms. The pkgadd command is used to install packages on the system. More information about the product is...

6.9CVSS0.2AI score0.01006EPSS
Exploits1
Rows per page
Query Builder