CVE-2018-12562

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12562

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script ‘mount.cifs.wrapper’ uses the shell to forward the arguments to the actual mount.cifs binary. The shell evaluates wildcards (such as in an injected string:/home/../tmp/* string).

Source: CVE-2018-12562

답글 남기기 응답 취소