Dstat sys.path搜索路径本地权限提升漏洞

🗓️ 12 Dec 2009 00:00:00Reported by RootType

seebug

seebug🔗 www.seebug.org👁 26 Views

dstat sys.path搜索路径本地权限提升漏洞, 通过植入恶意Python模块导致任意代码执

Reporter	Title	Published	Views	Family All 53
BDU FSTEC	The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the CentOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Gentoo Linux operating system allows a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
Tenable Nessus	CentOS 5 : dstat (CESA-2009:1619)	6 Jan 201000:00	–	nessus
Tenable Nessus	Fedora 11 : dstat-0.6.9-5.fc11 (2009-12663)	7 Dec 200900:00	–	nessus
Tenable Nessus	Fedora 12 : dstat-0.7.0-1.fc12 (2009-12674)	7 Dec 200900:00	–	nessus
Tenable Nessus	GLSA-200911-04 : dstat: Untrusted search path	30 Nov 200900:00	–	nessus
Tenable Nessus	Oracle Linux 5 : dstat (ELSA-2009-1619)	12 Jul 201300:00	–	nessus
Tenable Nessus	RHEL 5 : dstat (RHSA-2009:1619)	1 Dec 200900:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : dstat on SL5.x i386/x86_64	1 Aug 201200:00	–	nessus

12 Dec 2009 00:00Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.0034

dstat vulnerability local privilege escalation python module security update redhat gentoo patch exploit