PT-2004-2084 · Seti · Seti
Publicado
2004-12-01
·
Atualizado
2017-07-11
·
CVE-2004-1115
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
SETI project versions 3.08-r3 and earlier
Description:
The issue allows local users to gain privileges by modifying user-owned programs that are executed with root privileges by the init scripts.
Recommendations:
For SETI project versions 3.08-r3 and earlier, consider restricting the execution of user-owned programs with root privileges until a fix is available. As a temporary workaround, review and monitor all user-owned programs executed by the init scripts to minimize the risk of exploitation.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Seti