× Welcome to SGCyberSecurity forum!

Feel free to discuss any topics relating to cybersecurity with the rest of the security community in this forum.

Topic-icon Two flaws in hesiod permitting privilege elevation

7 years 9 months ago #3283 by o_icemanssl22

BEGIN PGP SIGNED MESSAGE
Hash: SHA256

> [] Weak SUID check allowing privilege elevation
>
> Hesiod unsafely checks EUID vs UID in a few places, consulting
> environment variables for configuration if they match. This could be
> u

Please Log in or Create an account to join the conversation.

7 years 9 months ago #3284 by o_howard

woah. any solution or workaround to this?

Please Log in or Create an account to join the conversation.