CVE-2009-4607

Name of the Vulnerable Software and Affected Versions Overland Storage Snap Server 410 with GuardianOS version 5.1.041

Description The command line interface in the affected software runs the less utility with higher privileges than the CLI user, without sufficient restrictions on shell escapes. This allows local users to gain privileges by using the ! character within less to access a privileged shell.

Recommendations For Overland Storage Snap Server 410 with GuardianOS version 5.1.041, consider restricting access to the less utility or running it with lowered privileges to minimize the risk of exploitation. As a temporary workaround, avoid using the ! character within less to prevent accessing a privileged shell.