In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript allows the smokeping user to gain ownership of any file, allowing for the smokeping user to gain root privileges. There is a race condition involving /var/lib/smokeping and chown.
References
Link | Resource |
---|---|
https://bugs.gentoo.org/602652 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-09-20 18:15
Updated : 2024-02-28 19:29
NVD link : CVE-2016-20015
Mitre link : CVE-2016-20015
CVE.ORG link : CVE-2016-20015
JSON object : View
Products Affected
smokeping
- smokeping
CWE