Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LXC lxc-sshd 安全漏洞
Vulnerability Description
LXC(LinuX Containers)是Linux内核容器功能的一个用户空间接口,它通过强大的API和简单的工具,使Linux用户易于创建和管理系统或应用容器。 LXC 1.0.0.beta2之前的版本中的lxc-sshd模板(templates/lxc-sshd.in)中存在安全漏洞,该漏洞源于当安装/sbin/init时,程序使用read-write权限。本地攻击者可通过修改init脚本文件利用该漏洞获取权限。
CVSS Information
N/A
Vulnerability Type
N/A