Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Joe text editor 2.8 through 2.9.7 does not remove the group and user setuid bits for backup files, which could allow local users to execute arbitrary setuid and setgid root programs when root edits scripts owned by other users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Joe Text Editor SetUID备份可执行编辑权限提升漏洞
Vulnerability Description
Joe text editor 2.8到2.9.7版本没有删除备份文件中的群组和用户setuid位,本地用户可以利用该漏洞在根编辑其他用户的脚本时执行任意setuid和setgid根程序。
CVSS Information
N/A
Vulnerability Type
N/A