Description
The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users.
Affected products
- slackware / slackware_linux2.0.35 – 2.0.35
- slackware / slackware_linux3.4 – 3.4