Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
adsetgroups in Centrify Server Suite 2008 through 2014.1 and Centrify DirectControl 3.x through 4.2.0 on Linux and UNIX allows local users to read arbitrary files with root privileges by leveraging improperly protected setuid functionality.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Centrify Server Suite和Centrify DirectControl 权限许可和访问控制漏洞
Vulnerability Description
Centrify Server Suite和Centrify DirectControl都是美国Centrify公司的产品。Centrify Server Suite是一套为服务器提供身份认证和审计的软件;Centrify DirectControl是一套为应用程序提供身份验证和特权用户访问的软件。 基于Linux和UNIX系统的Centrify Server Suite和Centrify DirectControl的adsetgroups中存在安全漏洞,该漏洞源于程序没有正确保护setuid功能。本地攻
CVSS Information
N/A
Vulnerability Type
N/A