Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2014-8169
Description:automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home directory.
Test IDs: 1.3.6.1.4.1.25623.1.0.871398   1.3.6.1.4.1.25623.1.0.842178   1.3.6.1.4.1.25623.1.0.123055   1.3.6.1.4.1.25623.1.0.122743   1.3.6.1.4.1.25623.1.0.871477   1.3.6.1.4.1.25623.1.0.120616   1.3.6.1.4.1.25623.1.1.4.2015.1020.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-8169
BugTraq ID: 73211
http://www.securityfocus.com/bid/73211
RedHat Security Advisories: RHSA-2015:1344
http://rhn.redhat.com/errata/RHSA-2015-1344.html
SuSE Security Announcement: openSUSE-SU-2015:0475 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-03/msg00033.html
http://www.ubuntu.com/usn/USN-2579-1




© 1998-2024 E-Soft Inc. All rights reserved.