← voltar
CVE-2012-3484

CVE-2012-3484

EPSS 0.2%
Tunnelblick 3.3beta20 and earlier relies on a test for specific ownership and permissions to determine whether a program can be safely executed, which allows local users to bypass intended access restrictions and gain privileges via a (1) user-mountable image or (2) network share.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://archives.neohapsis.com/archives/fulldisclosure/2012-08/0122.htmlhttp://code.google.com/p/tunnelblick/issues/detail?id=212http://www.openwall.com/lists/oss-security/2012/08/14/1