Openbase International Ltd: >> Openbase >> 10.0 Security Vulnerabilities
openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink attack on the /tmp/output file, a different vulnerability than CVE-2006-5328.
CVSS Score
2.1
EPSS Score
0.002
Published
2006-11-10
Untrusted search path vulnerability in openexec in OpenBase SQL before 10.0.1 allows local users to gain privileges via a modified PATH that references a malicious helper binary, as demonstrated by (1) cp, (2) rm, and (3) killall, different vectors than CVE-2006-5327.
CVSS Score
4.6
EPSS Score
0.002
Published
2006-11-10