CVE-2018-20106

CVE-2018-20106

In yast2-printer up to and including version 4.0.2 the SMB printer settings don’t escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast.

Source: CVE-2018-20106

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다