메뉴 건너뛰기

GREATUSER

cve

CVE-2017-13649

관리자 2017.08.27 07:00 조회 수 : 2

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat /pathname`" command. NOTE: the vendor indicates that there is no common or recommended scenario in which a root script would execute this kill command.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-13649
번호 제목 글쓴이 날짜 조회 수
272 CVE-2017-0138 관리자 2017.03.18 4
271 CVE-2017-0076 관리자 2017.03.18 4
270 CVE-2017-0081 관리자 2017.03.18 4
269 CVE-2017-0083 관리자 2017.03.18 4
268 CVE-2017-0079 관리자 2017.03.18 4
267 CVE-2017-0092 관리자 2017.03.18 4
266 CVE-2017-0097 관리자 2017.03.18 4
265 CVE-2017-0060 관리자 2017.03.18 4
264 CVE-2017-6548 관리자 2017.03.10 4
263 CVE-2017-6555 (cms_made_simple) 관리자 2017.03.10 4
262 CVE-2016-3231 관리자 2016.06.17 4
261 CVE-2016-3227 관리자 2016.06.17 4
260 CVE-2016-3225 관리자 2016.06.17 4
259 CVE-2017-2921 관리자 2017.11.09 3
258 CVE-2017-2917 관리자 2017.11.09 3
위로