lxc-attach in LXC prior to 1.0.9 and 2.x prior to 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat() family of syscalls.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linuxcontainers lxc |