VYPR
Unrated severityNVD Advisory· Published Jan 14, 2010· Updated Jun 16, 2026

CVE-2010-0002

CVE-2010-0002

Description

The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in LS_OPTIONS, which allows local users to send escape sequences to terminal emulators, or hide the existence of a file, via a crafted filename.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • GNU/Bash5 versions
    cpe:2.3:a:gnu:bash:2.05:b:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:gnu:bash:2.05:b:*:*:*:*:*:*
    • cpe:2.3:a:gnu:bash:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:bash:3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:bash:3.2.48:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:bash:4.0:*:*:*:*:*:*:*
  • Mandriva/Bashllm-create
    Range: 2.05b, 3.0, 3.2, 3.2.48, 4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.