漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
lfs/backup in IPFire 2.25-core155 does not ensure that /var/ipfire/backup/bin/backup.pl is owned by the root account. It might be owned by an unprivileged account, which could potentially be used to install a Trojan horse backup.pl script that is later executed by root. Similar problems with the ownership/permissions of other files may be present as well.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IPFire Firewall 安全漏洞
Vulnerability Description
IPFire Firewall是IPFire组织的一套开源的基于Linux的防火墙系统。 IPFire Firewall存在安全漏洞,该漏洞源于IPFire 2.25-core155中的lfs backup不保证var IPFire backup bin backup.pl属于root帐号。它可能属于一个非特权帐户,该帐户可能用于安装一个木马backup.pl脚本,该脚本稍后由根用户执行。
CVSS Information
N/A
Vulnerability Type
N/A