Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
log-user-session version 0.7 and earlier contains a Directory Traversal vulnerability in Main SUID-binary /usr/local/bin/log-user-session that can result in User to root privilege escalation. This attack appear to be exploitable via Malicious unprivileged user executes the vulnerable binary/(remote) environment variable manipulation similar shell-shock also possible.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
log-user-session 路径遍历漏洞
Vulnerability Description
log-user-session是一款用于存储Shell会话的应用程序。 log-user-session 0.7及之前版本中的Main SUID-binary /usr/local/bin/log-user-session存在目录遍历漏洞。攻击者可利用该漏洞将权限提升至root。
CVSS Information
N/A
Vulnerability Type
N/A