exploitDog

CVE-2008-1132

Опубликовано: 04 мар. 2008

Источник: nvd

CVSS2: 4.7

EPSS Низкий

Описание

Untrusted search path vulnerability in src/mainwindow.c in Net Activity Viewer 0.2.1 allows local users with Net Activity Viewer privileges to execute arbitrary code via a malicious gksu program, which is invoked during the Restart As Root action.

Ссылки

http://secunia.com/advisories/29097
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=579181
Patch
http://secunia.com/advisories/29097
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=579181
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:net_activity_viewer:net_activity_viewer:0.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.0008

Низкий

4.7 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-hxpv-xc55-vq8m

github

почти 4 года назад

Untrusted search path vulnerability in src/mainwindow.c in Net Activity Viewer 0.2.1 allows local users with Net Activity Viewer privileges to execute arbitrary code via a malicious gksu program, which is invoked during the Restart As Root action.

EPSS

Процентиль: 24%

0.0008

Низкий

4.7 Medium

CVSS2

Дефекты

CWE-264