misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gernot stocker kpopup 0.9.1 |
||
gernot stocker kpopup 0.9.5_pre2 |