Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
CVE ID: | CVE-2014-8169 |
Description: | automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home directory. |
Test IDs: | 1.3.6.1.4.1.25623.1.0.871398 1.3.6.1.4.1.25623.1.0.842178 1.3.6.1.4.1.25623.1.0.123055 1.3.6.1.4.1.25623.1.0.122743 1.3.6.1.4.1.25623.1.0.871477 1.3.6.1.4.1.25623.1.0.120616 1.3.6.1.4.1.25623.1.1.4.2015.1020.1 |
Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2014-8169 BugTraq ID: 73211 http://www.securityfocus.com/bid/73211 RedHat Security Advisories: RHSA-2015:1344 http://rhn.redhat.com/errata/RHSA-2015-1344.html SuSE Security Announcement: openSUSE-SU-2015:0475 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-03/msg00033.html http://www.ubuntu.com/usn/USN-2579-1 |