PT-2006-2312 · Beagle · Beagle
James Mccaw
·
Published
2006-03-19
·
Updated
2017-07-20
·
CVE-2006-1296
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Beagle version 0.2.2.1
Description
The issue allows local users to potentially gain privileges through a malicious
beagle-info program in the current working directory or directories specified in the PATH.Recommendations
For Beagle version 0.2.2.1, consider restricting access to the
beagle-info program until a patch is available. As a temporary workaround, avoid using directories with untrusted beagle-info programs in the current working directory or the PATH environment variable.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Beagle