mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-10 03:37:37 +02:00
0xMarcio
845 B
845 B
CVE-2014-7180
Description
Electric Cloud ElectricCommander before 4.2.6 and 5.x before 5.0.3 uses world-writable permissions for (1) eccert.pl and (2) ecconfigure.pl, which allows local users to execute arbitrary Perl code by modifying these files.
POC
Reference
- http://packetstormsecurity.com/files/128819/ElectricCommander-4.2.4.71224-Privilege-Escalation.html
- http://packetstormsecurity.com/files/128819/ElectricCommander-4.2.4.71224-Privilege-Escalation.html
Github
No PoCs found on GitHub currently.