Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The CGIwrap program before 3.9 on Debian GNU/Linux uses an incorrect minimum value of 100 for a UID to determine whether it can perform a seteuid operation, which could allow attackers to execute code as other system UIDs that are greater than the minimum value, which should be 1000 on Debian systems.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Debian CGIwrap program UID设置漏洞
Vulnerability Description
Debian,是一种自由操作系统,全称Debian GNU/Linux,采用Linux作为内核。 Debian GNU/Linux上的CGIwrap program 3.9之前版本使用一个不正确的UID的最小值100来确定是否可以执行seteuid操作。这使得攻击者可以以大于最小值的其他UID执行代码。Debian系统的最小值应为1000。
CVSS Information
N/A
Vulnerability Type
N/A