CVE-2011-4338

Posted on by admin

CVE-2011-4338

Shaman 1.0.9: Users can add the line askforpwd=false to his shaman.conf file, without entering the root password in shaman. The next time shaman is run, root privileges are granted despite the fact that the user never entered the root password.

Source: CVE-2011-4338

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다