CVE-2009-0667 Information
Description
Untrusted search path vulnerability in Agent/Backend.pm in Ocsinventory-Agent before 0.0.9.3 and 1.x before 1.0.1 in OCS Inventory allows local users to gain privileges via a Trojan horse Perl module in an arbitrary directory.
Reference
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506416 http://nana.rulezlan.org/~goneri/ocsinventory-agent/Ocsinventory-Agent-0.0.9.3.tar.gz http://osvdb.org/55718 http://secunia.com/advisories/35727 http://secunia.com/advisories/35768 http://security.debian.org/pool/updates/main/o/ocsinventory-agent/ocsinventory-agent_0.0.9.2repack1-4lenny1.diff.gz http://www.debian.org/security/2009/dsa-1828 http://www.ocsinventory-ng.org/index.php?mact=Newscntnt01detail0&cntnt01articleid=144 http://www.securityfocus.com/bid/35593 http://www.vupen.com/english/advisories/2009/1809
Share on: