2001-09-12 04:00:00
mitre
PUBLISHED
ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the users own CLASSPATH directories before the systems directories, which allows a malicious local user to execute arbitrary code as root via a Trojan horse Ikeyman class.