CVE-2008-0310
N/A
N/A
Summary
Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.sco.com/support/update/download/release.php?rid=324
- http://www.securitytracker.com/id?1019787
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41759
- http://ftp.sco.com/pub/unixware7/714/security/p534589/p534589.txt
- https://www.exploit-db.com/exploits/5355
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=676
- http://secunia.com/advisories/29657
References
- http://www.sco.com/support/update/download/release.php?rid=324
- http://www.securitytracker.com/id?1019787
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41759
- http://ftp.sco.com/pub/unixware7/714/security/p534589/p534589.txt
- https://www.exploit-db.com/exploits/5355
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=676
- http://secunia.com/advisories/29657
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.