Pełny tytuł: Traceroute 2.1.2 Privilege Escalation Vulnerability 
Kategoria: local exploits
Platforma: linux
In Traceroute versions 2.0.12 through to 2.1.2, the wrapper scripts mishandle shell metacharacters, which can lead to privilege escalation if the wrapper scripts are executed via sudo. The affected wrapper scripts include tcptraceroute, tracepath, traceproto, and traceroute-nanog. Version 2.1.3 addresses this issue.

# 0day.today @ http://0day.today/