Unprivileged arbitrary module load vulnerability in busybox via basename abuseID: oval:org.secpod.oval:def:24746 | Date: (C)2015-06-08 (M)2022-12-05 |
Class: VULNERABILITY | Family: unix |
The host is installed with busybox in RHEL 5 or 6 and is prone to an unprivileged arbitrary module load vulnerability. A flaw is present in the application, which fails to handle basename abuse. Successful exploitation could allow attackers to load arbitrary module.
Platform: |
Red Hat Enterprise Linux 6 |
Red Hat Enterprise Linux 5 |