BRU BRUEXECLOG Environment Variable Vulnerability

Solution:
Currently the SecurityFocus staff are not ware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Removal of the setuid bit from the bru binary will cause it to complain about needing to be setuid root, when run by normal users. So long as the bru utility is only run as root, its operation will be unaffected.



 

Privacy Statement
Copyright 2010, SecurityFocus