CVE-2008-6559

Name of the Vulnerable Software and Affected Versions ReliantHA version 1.1.4 in SCO UnixWare 7.1.4

Description The issue allows local users to gain root privileges through a crafted -d argument that contains .. (dot dot) sequences pointing to a directory with a file whose name includes shell metacharacters.

Recommendations For ReliantHA version 1.1.4 in SCO UnixWare 7.1.4, consider restricting access to the merge mcd function until a patch is available, and avoid using arguments that contain .. sequences or shell metacharacters. At the moment, there is no information about a newer version that contains a fix for this vulnerability.