Back to search
CVE-2006-2183
Published: May 4, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Untrusted search path vulnerability in Truecrypt 4.1, when running suid root on Linux, allows local users to execute arbitrary commands and gain privileges via a modified PATH environment variable that references a malicious mount command.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
truecrypt-execvp-gain-privileges(26191)
vdb-entry
x_refsource_XF
[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple
mailing-list
x_refsource_MLIST
25131
vdb-entry
x_refsource_OSVDB
ADV-2006-1591
vdb-entry
x_refsource_VUPEN
19903
third-party-advisory
x_refsource_SECUNIA
http://www.truecrypt.org/history.php
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now