CVE-2008-6559

NONE EPSS 52.1%
Published Mar 30, 200917y ago · Modified Jun 16, 20262w ago
Find Similar
Published Mar 30, 2009 17y ago
Last Modified Jun 16, 2026 2w ago

Description

Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. (dot dot) sequences that point to a directory containing a file whose name includes shell metacharacters.

Threat Intelligence

EPSS Exploit Probability
52.1% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 2

VendorProductVersionRange
scoreliantha1.1.4any
scounixware7.1.4any

References 5

  • ftp.sco.com ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/30921
    Vendor Advisory
  • osvdb.org http://www.osvdb.org/51234
  • securityfocus.com http://www.securityfocus.com/bid/28625
    ExploitPatch
  • exploit-db.com https://www.exploit-db.com/exploits/5357

Remediation