Untrusted search path vulnerability in openexec in OpenBase SQL prior to 10.0.1 allows local users to gain privileges via a modified PATH that references a malicious helper binary, as demonstrated by (1) cp, (2) rm, and (3) killall, different vectors than CVE-2006-5327.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbase international ltd openbase 10.0 |
||
openbase international ltd openbase 7.0.15 |
||
openbase international ltd openbase 8.0.4 |
||
openbase international ltd openbase 9.1.5 |