cpe:/o:sco:unixware:7.1.4 CVE-2008-0310 2008-04-07T13:44:00.000-04:00 2017-09-28T21:30:12.927-04:00 6.9 LOCAL MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-04-08T09:04:00.000-04:00 ALLOWS_ADMIN_ACCESS SECTRACK 1019787 IDEFENSE 20080403 SCO UnixWare pkgadd Directory Traversal Vulnerability SECUNIA 29657 EXPLOIT-DB 5355 SCO SCOSA-2008.1 CONFIRM http://www.sco.com/support/update/download/release.php?rid=324 XF sco-unixware-pkgadd-directory-traversal(41759) Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST.