• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

CDRTools RSH Environment Variable Privilege Escalation Vulnerability

CDRTools is reportedly vulnerable to an RSH environment variable privilege-escalation vulnerability. This issue is due to the application's failure to properly implement security controls when executing an application specified by the RSH environment variable.

An attacker may leverage this issue to gain superuser privileges on a computer running the affected software.