CVE Vulnerabilities

CVE-2008-2378

Published: Nov 26, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Untrusted search path vulnerability in hfkernel in hf 0.7.3 and 0.8 allows local users to gain privileges via a Trojan horse killall program in a directory in the PATH, related to improper handling of the -k option.

Affected Software

Name Vendor Start Version End Version
Hf Hf 0.7.3 0.7.3
Hf Hf 0.8 0.8
Hf Ubuntu dapper *
Hf Ubuntu gutsy *
Hf Ubuntu hardy *
Hf Ubuntu intrepid *
Hf Ubuntu upstream *

References