2 results (0.004 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-1226

https://notcve.org/view.php?id=CVE-2014-1226

06 Apr 2018 — The pipe_init_terminal function in main.c in s3dvt allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-6876. La función (1) pipe_init_terminal en main.c en s3dvt permite que usuarios locales obtengan privilegios aprovechando los permisos setuid y el uso de bash en versiones 4.3 y anteriores. NOTA: Esta vulnerabilidad existe debido a una solución incompleta para CVE-2013-6876. • http://hmarco.org/bugs/CVE-2014-1226-s3dvt_0.2.2-root-shell.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2013-6876 – s3dvt Privilege Escalation

https://notcve.org/view.php?id=CVE-2013-6876

02 Jun 2014 — The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the version number was not changed. Las funciones (1) pty_init_terminal y (2) pipe_init_terminal en main.c en s3dvt, en versiones 0.2.2 y anteriores, permiten que usuarios locales obtengan privilegios aprovechando ... • http://hmarco.org/bugs/s3dvt_0.2.2-root-shell.html • CWE-264: Permissions, Privileges, and Access Controls •