Vulnerability Details CVE-2009-0854
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.5%
CVSS Severity
CVSS v2 Score 6.9
References
- http://secunia.com/advisories/34205
- http://www.securityfocus.com/bid/34092
- http://www.ubuntu.com/usn/USN-732-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49216
- http://secunia.com/advisories/34205
- http://www.securityfocus.com/bid/34092
- http://www.ubuntu.com/usn/USN-732-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49216