yast2-backup 2
yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux allows local users to gain privileges via shell metacharacters in filenames used by the backup process.
Exploitability
AV:L
AC:L
Au:N
Impact
C:C
I:C
A:C
7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C