Description
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
Affected products
- conectiva / linux5.1 – 5.1
- immunix / immunix6.2 – 6.2
- immunix / immunix7.0_beta – 7.0_beta
- mandrakesoft / mandrake_linux7.2 – 7.2
- RedHat / linux7.0 – 7.0
- SUSE / suse_linux6.4 – 6.4
- SUSE / suse_linux7.0 – 7.0
References
- MISChttp://www.securityfocus.com/bid/1936
- MISChttp://www.redhat.com/support/errata/RHSA-2000-108.html
- MISChttp://www.linux-mandrake.com/en/security/MDKSA-2000-071-1.php3?dis=7.1
- MISChttp://archives.neohapsis.com/archives/linux/suse/2000-q4/0596.html
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-11/0179.html
- MISChttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000340
- VENDOR_ADVISORYhttp://www.debian.org/security/2000/20001120
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5516