CVE-2013-6876

Name of the Vulnerable Software and Affected Versions s3dvt versions 0.2.2 and earlier

Description The issue allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. This is due to the pty init terminal and pipe init terminal functions in main.c.

Recommendations For s3dvt versions 0.2.2 and earlier, apply the fix from commit ad732f00b411b092c66a04c359da0f16ec3b387 to resolve the issue. As a temporary workaround, consider restricting the usage of setuid permissions and updating bash to a version later than 4.3 to minimize the risk of exploitation.