Описание
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 2.3.3 (включая)
cpe:2.3:a:icecast:icecast:*:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00062
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
около 11 лет назад
Icecast before 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users to gain privileges via unspecified vectors.
debian
около 11 лет назад
Icecast before 2.4.0 does not change the supplementary group privilege ...
github
больше 3 лет назад
Icecast before 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users to gain privileges via unspecified vectors.
EPSS
Процентиль: 19%
0.00062
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264