CVE-2001-1374

expect before 5.32 searches for its libraries in /var/tmp before other directories, which could allow local users to gain root privileges via a Trojan horse library that is accessed by mkpasswd.

Date published : 2003-04-02

http://www.securityfocus.com/bid/3074

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000409