2 Total Results
Displaying 1-2 of 2
Disclosure Date: February 25, 2010 (last updated February 13, 2023)
stap-server in SystemTap 1.1 does not properly restrict the value of the -B (aka BUILD) option, which allows attackers to have an unspecified impact via vectors associated with executing the make program, a different vulnerability than CVE-2009-4273.
Disclosure Date: January 26, 2010 (last updated February 13, 2023)
stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.