2016-08-01 01:00:00
microfocus
PUBLISHED
Novell Filr 1.2 before Hot Patch 6 and 2.0 before Hot Patch 2 uses world-writable permissions for /etc/profile.d/vainit.sh, which allows local users to gain privileges by replacing this files content with arbitrary shell commands.