CVE-2009-0854

Опубликовано: 11 мар. 2009

Источник: ubuntu

Приоритет: high

CVSS2: 6.9

Описание

Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.

Релиз	Статус	Примечание
dapper	not-affected
devel	not-affected	0.5.4-12ubuntu2
gutsy	not-affected
hardy	released	0.5.4-8ubuntu1.1
intrepid	released	0.5.4-9ubuntu1.1
upstream	released	0.5.4-12ubuntu2

Показывать по

Ссылки на источники

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2009-0854

nvd

почти 17 лет назад

Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.

CVE-2009-0854

debian

почти 17 лет назад

Untrusted search path vulnerability in dash 0.5.4, when used as a logi ...

GHSA-8v83-6g9r-rxp5

github

почти 4 года назад

Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.

6.9 Medium

CVSS2

CVE-2009-0854

Описание

Пакет dash

Ссылки на источники

Связанные уязвимости