4 matches found
CVE-2015-2851
clientchown in the sync client in Synology Cloud Station 1.1-2291 through 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename...
CVE-2015-2851
clientchown in the sync client in Synology Cloud Station 1.1-2291 through 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename...
CVE-2015-2851
The CVE-2015-2851 issue affects Synology Cloud Station sync client on macOS, specifically versions 1.1-2291 through 3.1-3320. A setuid root executable, client_chown, allows local users to alter file ownership by supplying a filename, enabling escalation to root privileges. Impact is local and pro...
Synology Cloud Station sync client for OS X allows regular users to claim ownership of system files
Overview The Synology Cloud Station sync client for OS X contains a setuid root executable that allows regular users to claim ownership of system files. Description CWE-276: Incorrect Default Permissions - CVE-2015-2851The Synology Cloud Station sync client for OS X contains an executable named...