Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Ecartis (formerly Listar) 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ecartis/Listar不安全特权终止漏洞
Vulnerability Description
snapshot 20020125的Ecartis (以前的Listar) 1.0.0及其早期版本在Ecartis安装setuid-root,“lock-to-user”没有设置且ecartis被某些MTA's调用时不能正确终止特权。本地用户利用该漏洞提升特权。
CVSS Information
N/A
Vulnerability Type
N/A