The SDL port of abuse (abuse-SDL) prior to 2.00 does not properly drop privileges before creating certain files, which allows local users to create or overwrite arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
abuse abuse-sdl |