Michael A. Gumienny » Fcheck : Security Vulnerabilities, CVEs,
fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters.
Max CVSS
4.6
EPSS Score
0.05%
Published
2001-06-27
Updated
2017-12-19
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck.
Max CVSS
7.2
EPSS Score
0.05%
Published
2000-03-31
Updated
2008-09-10
2 vulnerabilities found