Noble M. Kellogg · Chkrootkit · CVE-2014-0476
**Name of the Vulnerable Software and Affected Versions**
chkrootkit versions prior to 0.50
**Description**
The issue arises from the slapper function in chkrootkit, which fails to properly quote file paths. This allows local users to execute arbitrary code via a Trojan horse executable, but only when /tmp is not mounted with the noexec option.
**Recommendations**
For versions prior to 0.50, update to version 0.50 or later to resolve the issue. As a temporary workaround, consider mounting /tmp with the noexec option to minimize the risk of exploitation.