Lucene search
Ubuntu.comUB:CVE-2010-0002HistoryJan 14, 2010 - 12:00 a.m.
CVE-2010-0002
2010-01-1400:00:00
ubuntu.com
ubuntu.com
7
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
14.8%
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash
2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in
LS_OPTIONS, which allows local users to send escape sequences to terminal
emulators, or hide the existence of a file, via a crafted filename.
Notes
| Author | Note |
|---|---|
| jdstrand | Mandriva-specific |
Related
prion
prion
Code injection
2010-01-14 18:30:00
securityvulns
securityvulns
bash terminal characters injection
2010-01-17 00:00:00
[ MDVSA-2010:004 ] bash
2010-01-17 00:00:00
debiancve
debiancve
CVE-2010-0002
2010-01-14 18:30:00
cve
cve
CVE-2010-0002
2010-01-14 18:30:00
openvas
openvas
Mandriva Update for bash MDVSA-2010:004 (bash)
2010-01-19 00:00:00
Mandriva Update for bash MDVSA-2010:004 (bash)
2010-01-19 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : bash (MDVSA-2010:004)
2010-01-14 00:00:00
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
14.8%
Related for UB:CVE-2010-0002