CVE-2008-1132

Sažetak

Untrusted search path vulnerability in src/mainwindow.c in Net Activity Viewer 0.2.1 allows local users with Net Activity Viewer privileges to execute arbitrary code via a malicious gksu program, which is invoked during the Restart As Root action.

Reference

http://secunia.com/advisories/29097
http://sourceforge.net/project/shownotes.php?release_id=579181

CVSS

Base:	4.7
Impact:	6.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:N/I:C/A:N

Zadnje važnije ažuriranje

05-09-2008 - 21:36

Objavljeno

04-03-2008 - 00:44