CDRTools RSH Environment Variable Privilege Escalation Vulnerability

Bugtraq ID: 11075
Class: Access Validation Error
CVE: CVE-2004-0806
Remote: No
Local: Yes
Published: Aug 31 2004 12:00AM
Updated: Jul 12 2009 05:56PM
Credit: Max Vozeler is credited with the discovery of this issue.
Vulnerable: SGI ProPack 3.0 SP6
SCO Unixware 7.1.4
RedHat Linux 9.0 i386
Gentoo Linux 1.4
CDRTools CDRTools 2.0.3
CDRTools CDRTools 2.0.1 a18
CDRTools CDRTools 2.0.1
+ MandrakeSoft Corporate Server 3.0 x86_64
+ MandrakeSoft Corporate Server 3.0
+ Mandriva Linux Mandrake 10.2 x86_64
+ Mandriva Linux Mandrake 10.2
+ Mandriva Linux Mandrake 10.1 x86_64
+ Mandriva Linux Mandrake 10.1
+ Mandriva Linux Mandrake 10.0 AMD64
+ Mandriva Linux Mandrake 10.0
+ Mandriva Linux Mandrake 9.2 amd64
+ Mandriva Linux Mandrake 9.2
CDRTools CDRTools 2.0
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus