SUSE Linux prior to 9.1 and SUSE Linux Enterprise Server prior to 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse suse linux 9.0 |
||
suse suse linux 8.1 |
||
suse suse linux 8.2 |