VULHUB ™

A vulnerability exists in the /usr/lib/merge/dos7utils program (suid root by default) which allows any user to execute any command as root. The dos7utils program gets its localeset.sh exec path from the environment variable STATICMERGE. When setting this to a directory writable by us and setting the -f switch, we can have dos7utils run anything we like.

A vulnerability exists in the /usr/lib/merge/dos7utils program (suid root by default) which allows any user to execute any command as root. The dos7utils program gets its localeset.sh exec path from the environment variable STATICMERGE. When setting this to a directory writable by us and setting the -f switch, we can have dos7utils run anything we like.