Описание
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.
Ссылки
- ExploitVendor Advisory
- Exploit
- ExploitVendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:frox:frox:0.7.18:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
около 20 лет назад
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.
debian
около 20 лет назад
frox 0.7.18, when running setuid root, does not properly drop privileg ...
github
больше 3 лет назад
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.
EPSS
Процентиль: 33%
0.00129
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other