Local Code Execution Requires local account (non-privileged) Requires write access to /tmp If...
24
EXPLOIT WRITING SMU SSIG SPRING 2016 STARK RIEDESEL
-
Upload
shanon-jordan -
Category
Documents
-
view
222 -
download
0
Transcript of Local Code Execution Requires local account (non-privileged) Requires write access to /tmp If...
Local Code Execution Requires local account (non-privileged) Requires write access to /tmp If chkrootkit runs as privileged user then Priv. Escl. Bug is in slapper function version < 0.50 Chkrootkit 0.48 Downloaded from Chkrootkit 0.50 Downloaded from Source: Remote Code Execution Requires cacti web account (non-privileged) Uses SQL injection technique to get (read) access to DB Bug is in the graphs_new.php file version