Improper Array Management in Novell Client for Linux in Novell Open Enterprise Server (OES) 11 Linux SP2

Improper Array Management in Novell Client for Linux in Novell Open Enterprise Server (OES) 11 Linux SP2

CVE-2014-0595 · LOW Severity

AV:L/AC:H/AU:N/C:P/I:P/A:N

/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11 Linux SP2 does not properly manage a certain array, which allows local users to obtain the S permission in opportunistic circumstances by leveraging the granting of the F permission by an administrator.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.