Описание
Untrusted search path vulnerability in Truecrypt 4.1, when running suid root on Linux, allows local users to execute arbitrary commands and gain privileges via a modified PATH environment variable that references a malicious mount command.
Ссылки
- Exploit
- PatchVendor Advisory
- Patch
- Patch
- Exploit
- PatchVendor Advisory
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:truecrypt_foundation:truecrypt:4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00086
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Untrusted search path vulnerability in Truecrypt 4.1, when running suid root on Linux, allows local users to execute arbitrary commands and gain privileges via a modified PATH environment variable that references a malicious mount command.
EPSS
Процентиль: 25%
0.00086
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other