CVE-2008-0310
NONE EPSS 58.7%
Published Apr 7, 200818y ago · Modified Jun 16, 20262w ago
Published Apr 7, 2008 18y ago
Last Modified Jun 16, 2026 2w ago
Description
Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST.
Threat Intelligence
EPSS Exploit Probability
58.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-22 Path Traversal Resource Mgmt
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| sco | unixware | 7.1.4 | any |
References 7
- ftp.sco.com http://ftp.sco.com/pub/unixware7/714/security/p534589/p534589.txt
- labs.idefense.com http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=676
- secunia.com http://secunia.com/advisories/29657
- sco.com http://www.sco.com/support/update/download/release.php?rid=324
- securitytracker.com http://www.securitytracker.com/id?1019787
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/41759
- exploit-db.com https://www.exploit-db.com/exploits/5355
Remediation
- sco.com http://www.sco.com/support/update/download/release.php?rid=324