PublicDate: 2004-12-31 05:00:00 UTC
Candidate: CVE-2004-0806
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0806
Description:
 cdrecord in the cdrtools package before 2.01, when installed setuid root,
 does not properly drop privileges before executing a program specified in
 the RSH environment variable, which allows local users to gain privileges.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_cdrtools: not-affected
edgy_cdrtools: not-affected
feisty_cdrtools: DNE
devel_cdrtools: not-affected
dapper_cdrkit: DNE
edgy_cdrkit: DNE
feisty_cdrkit: released (1.1.2-1)
devel_cdrkit: released (1.1.2-1)
upstream_cdrkit: needs-triage
upstream_cdrtools: needs-triage