The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged locations.
CPE | Name | Operator | Version |
---|---|---|---|
replaysorcery | ge | 0.4.0 | |
replaysorcery | le | 0.5.0 |