CVE-2008-6558 Information

Description

Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program.

Reference

ftp://ftp.sco.com/pub/unixware7/714/security/p534850/p534850.txt http://osvdb.org/46706 http://osvdb.org/46707 http://secunia.com/advisories/30921 http://www.securityfocus.com/bid/28624 https://www.exploit-db.com/exploits/5356