CVE-2008-4636 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-4636
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-4636

Description: yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux allows local users to gain privileges via shell metacharacters in filenames used by the backup process.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46879 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00003.html SAID Secunia Advisory: SA32832 OSVDB 50284 BID 32464

Return to the previous page.