PT-2018-8858 · Remctl · Remctl

Santosh Ananthakrishnan

Published

2018-04-01

Updated

2018-05-21

CVE-2018-0493

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions remctl versions prior to 3.14

Description The issue is related to a use-after-free error in remctld, which can occur when an attacker is authorized to execute a command that uses the sudo option. This error can lead to a daemon crash, memory corruption, or arbitrary command execution.

Recommendations For versions prior to 3.14, update to version 3.14 or later to resolve the issue.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2018-0493

DSA-4159-1

Affected Products

Remctl

PT-2018-8858 · Remctl · Remctl

CVE-2018-0493

Weakness Enumeration

Related Identifiers

Affected Products

References · 15