ID SECURITYVULNS:VULN:9680 Type securityvulns Reporter FULL-DISCLOSURE Modified 2009-02-17T00:00:00
LD_xxx environment variable are not cleared on 'login' execution, makeing it's possible to execute code witi root privileges.
For remote exploitation it's required to have ability to upload the file to remote system (via FTP, Web, etc).
All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please mail to email@example.com Vulners, 2018