Описание
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | |
| devel | not-affected | 0.5.4-12ubuntu2 |
| gutsy | not-affected | |
| hardy | released | 0.5.4-8ubuntu1.1 |
| intrepid | released | 0.5.4-9ubuntu1.1 |
| upstream | released | 0.5.4-12ubuntu2 |
Показывать по
EPSS
6.9 Medium
CVSS2
Связанные уязвимости
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.
Untrusted search path vulnerability in dash 0.5.4, when used as a logi ...
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.
EPSS
6.9 Medium
CVSS2