Local User Vulnerability in Bash Package for Mandriva
CVE-2010-0002

Currently unrated

Key Information:

Vendor

Gnu

Status
Vendor
CVE Published:
14 January 2010

What is CVE-2010-0002?

The vulnerability in the Mandriva bash package allows local users to leverage the --show-control-chars option in the LS_OPTIONS variable. This can enable them to send crafted escape sequences to terminal emulators, possibly manipulating the display output in a way that obscures certain files. Such exploitation can pose significant risks, leading to unauthorized actions and information hiding within user environments.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.