Vulnerability Details CVE-2016-7787
A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.6%
CVSS Severity
CVSS v3 Score 4.9
CVSS v2 Score 4.0
References
- http://lists.opensuse.org/opensuse-updates/2016-10/msg00031.html
- http://lists.opensuse.org/opensuse-updates/2016-10/msg00034.html
- http://www.openwall.com/lists/oss-security/2016/09/29/7
- http://www.securityfocus.com/bid/93224
- http://lists.opensuse.org/opensuse-updates/2016-10/msg00031.html
- http://lists.opensuse.org/opensuse-updates/2016-10/msg00034.html
- http://www.openwall.com/lists/oss-security/2016/09/29/7
- http://www.securityfocus.com/bid/93224