CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 2CVE-2008-6558 – SCO UnixWare Reliant HA 1.1.4 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2008-6558
Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program. Vulnerabilidad de ruta de búsqueda no confiable en hvdisp y rcvm en ReliantHA v.1.1.4 en SCO UnixWare 7.1.4 que permite a usuarios locales obtener permisos de root modificando la variable de entorno RELIANT_PATH para que apunte a un programa bin/henv malicioso. • https://www.exploit-db.com/exploits/5356 ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt http://osvdb.org/46706 http://osvdb.org/46707 http://secunia.com/advisories/30921 http://www.securityfocus.com/bid/28624 • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 2CVE-2008-6559 – SCO UnixWare Merge - 'mcd' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2008-6559
Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. (dot dot) sequences that point to a directory containing a file whose name includes shell metacharacters. Vulnerabilidad en el comando Merge mcd en ReliantHA v1.1.4 en SCO UnixWare 7.1.4. Permite a usuarios locales obtener permisos de root a través de un argumento -d manipulado que contiene secuencias de .. (dos puntos) que apuntan a un directorio que contiene un fichero cuyo nombre contiene metacaracteres de shell. • https://www.exploit-db.com/exploits/5357 ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt http://secunia.com/advisories/30921 http://www.osvdb.org/51234 http://www.securityfocus.com/bid/28625 • CWE-20: Improper Input Validation •