Описание
The Gentoo mail-filter/assp package 1.9.8.13030 and earlier allows local users to gain privileges by leveraging access to the assp user account to install a Trojan horse /usr/share/assp/assp.pl script.
Ссылки
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.9.8.13030 (включая)
cpe:2.3:a:anti-spam_smtp_proxy_project:anti-spam_smtp_proxy:*:*:*:*:*:gentoo:*:*
EPSS
Процентиль: 30%
0.00111
Низкий
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-732
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
The Gentoo mail-filter/assp package 1.9.8.13030 and earlier allows local users to gain privileges by leveraging access to the assp user account to install a Trojan horse /usr/share/assp/assp.pl script.
EPSS
Процентиль: 30%
0.00111
Низкий
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-732