CVE-2008-6558

Name of the Vulnerable Software and Affected Versions ReliantHA version 1.1.4 in SCO UnixWare 7.1.4

Description The issue allows local users to gain root privileges by modifying the RELIANT PATH environment variable to point to a malicious bin/hvenv program. This is due to an untrusted search path vulnerability in hvdisp and rcvm components.

Recommendations For ReliantHA version 1.1.4 in SCO UnixWare 7.1.4, consider restricting access to the RELIANT PATH environment variable to prevent modification by local users. Additionally, monitor and restrict execution of the bin/hvenv program to minimize the risk of exploitation.