CVE-2013-7172

Name of the Vulnerable Software and Affected Versions Slackware versions 13.1, 13.37, 14.0, 14.1

Description The issue concerns world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package. This could allow local users to use RPATH information to execute arbitrary code with root privileges.

Recommendations For Slackware versions 13.1, 13.37, 14.0, 14.1, consider changing the permissions of the iodbctest and iodbctestw programs to prevent world-writable access until a patch is available. As a temporary workaround, restrict the use of the libiodbc package to minimize the risk of exploitation.