Unrated severityNVD Advisory· Published Nov 27, 2008· Updated Jun 16, 2026
CVE-2008-4636
CVE-2008-4636
Description
yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux allows local users to gain privileges via shell metacharacters in filenames used by the backup process.
Affected products
3cpe:2.3:o:suse:yast2-backup:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:suse:yast2-backup:*:*:*:*:*:*:*:*range: >=2.14.2,<=2.16.6
- (no CPE)range: 2.14.2 - 2.16.6
- Range: 2.14.2 - 2.16.6
Patches
Vulnerability mechanics
References
5- lists.opensuse.org/opensuse-security-announce/2008-11/msg00003.htmlnvdPatchThird Party Advisory
- secunia.com/advisories/32832nvdBroken LinkPatchVendor Advisory
- www.securityfocus.com/bid/32464nvdBroken LinkPatchThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/46879nvdThird Party AdvisoryVDB Entry
- osvdb.org/50284nvdBroken Link
News mentions
0No linked articles in our index yet.