kscd vulnerability

good morning, sorry for not sending an advisory, but i don't have much time. : I think the exploit is well commented. regards, Sebastian mail: Permission denied. Detected symlink to /etc/ld.so.preload. Admin has been informed. exploituser@lucifer$ /tmp/boomshell root@lucifer...

KDE 1.1/1.1.1/1.2/2.0 kscd - SHELL Environmental Variable

source: https://www.securityfocus.com/bid/1206/info Some linux distributions S.u.S.E. 6.4 reported ship with kscd a CD player for the KDE Desktop sgid disk. kscd uses the contents of the 'SHELL' environment variable to execute a browser. This makes it possible to obtain a sgid 'disk' shell. Using...