Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID 59, which could allow local users with that UID or GID to modify the files and gain privileges as other TotalView users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Etnus TotalView不安全UID/GID导致权限提升漏洞
Vulnerability Description
TotalView是一款程序调试器,运行在多种Unix和Linux系统平台下。 TotalView由于安装文件和目录存在问题,可以导致本地用户权限提升。 TotalView默认安装的情况下,会建立一些UID为5039/GID为59的权限可写文件和目录,一般情况下这些文件和目录由root的UID/GID权限建立。拥有UID为5039或者GID为59帐户的本地攻击者可以利用全局可写问题修改文件放置恶意代码或者建立文件,当Root用户通过TotalView执行这些文件的时候可导致权限提升等攻击。 此漏洞存在于L
CVSS Information
N/A
Vulnerability Type
N/A