Debian Security Advisory 4253-1

Discussion in 'News Aggregator' started by Packet Storm, 25 Jul 2018.

  1. Packet Storm

    Packet Storm Guest

    Debian Linux Security Advisory 4253-1 - Denis Andzakovic discovered that network-manager-vpnc, a plugin to provide VPNC support for NetworkManager, is prone to a privilege escalation vulnerability. A newline character can be used to inject a Password helper parameter into the configuration data passed to vpnc, allowing a local user with privileges to modify a system connection to execute arbitrary commands as root.

    Continue reading...
     
    #1 Packet Storm, 25 Jul 2018
(You must log in or sign up to post here.)

Share This Page

Loading...