mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-11 20:52:49 +02:00
0xMarcio
1.0 KiB
1.0 KiB
CVE-2021-23892
%20for%20Linux&color=blue)
&color=brighgreen)
Description
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.
POC
Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10355
- https://kc.mcafee.com/corporate/index?page=content&id=SB10355
Github
No PoCs found on GitHub currently.