CCE-90870-7Platform: rhel7,centos7 | Date: (C)2017-06-29 (M)2022-10-10 |
Ensure that Root's Path Does Not Include Relative Paths or Null Directories
Ensure that none of the directories in root's path is equal to a single
'.' character, or
that it contains any instances that lead to relative path traversal, such as
'..' or beginning a path without the slash ('/') character.
Also ensure that there are no "empty" elements in the path, such as in these examples:
PATH=:/bin
PATH=/bin:
PATH=/bin::/sbin
These empty elements have the same effect as a single '.' character.
Parameter:
Technical Mechanism:
Including these entries increases the risk that root could
execute code from an untrusted location.
Fix:
No Remediation Info
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:30538 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:31261 |