CVEs-PoC/2004/CVE-2004-0806.md at 644028beecffb907d2d17205b6e4e97420cdd07e

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-13 05:54:46 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local users to gain privileges.

POC

Reference

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9805
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9805

Github

https://github.com/hongdal/notes

829 B Raw Blame History

CVE-2004-0806

Description

POC

Reference

Github

829 B

Raw Blame History