client_chown in the sync client in Synology Cloud Station 1.1-2291 up to and including 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
synology cloud_station 2.0-2291 |
||
synology cloud_station 2.0-2402 |
||
synology cloud_station 3.0-3109 |
||
synology cloud_station 3.0-3111 |
||
synology cloud_station 1.1-2291 |
||
synology cloud_station 3.0-3103 |
||
synology cloud_station 3.0-3108 |
||
synology cloud_station 2.1-2561 |
||
synology cloud_station 2.1-2570 |
||
synology cloud_station 3.1-3317 |
||
synology cloud_station 3.1-3320 |
||
synology cloud_station 2.1-2577 |
||
synology cloud_station 3.0-3005 |