← back
CVE-2009-4607

CVE-2009-4607

EPSS 0.6%
The command line interface in Overland Storage Snap Server 410 with GuardianOS 5.1.041 runs the "less" utility with a higher-privileged uid than the CLI user and without sufficient restriction on shell escapes, which allows local users to gain privileges using the "!" character within less to access a privileged shell.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/53881http://www.juniper.net/security/auto/vulnerabilities/vuln36739.htmlhttp://www.securityfocus.com/archive/1/507318/100/0/threadedhttp://www.securityfocus.com/bid/36739