RCE in Novell Linux_desktop

CVE-2008-4636

yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux allows local users to gain privileges via shell metacharacters in filenames used by the backup process.

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.005 (36.2th percentile) — read the EPSS interpretation.

Affected products

Novell Linux_desktop — versions 9
Novell Open_enterprise_server
Opensuse — versions 10.2, 10.3, 11.0
Suse Linux_enterprise_server — versions 8, 9
Suse Suse_linux_enterprise_desktop — versions 10
Suse Suse_linux_enterprise_server — versions 10
Suse Yast2-backup
N/a — versions n/a

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

cve@mitre.org (Patch, VDB Entry, Third Party Advisory, vdb-entry, Broken Link, x_refsource_BID)
cve@mitre.org (Patch, x_refsource_SECUNIA, Broken Link, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_OSVDB, vdb-entry, Broken Link)
cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_XF)
cve@mitre.org (vendor-advisory, Patch, Third Party Advisory, x_refsource_SUSE)