The Gentoo app-backup/burp package prior to 2.1.32 has incorrect group ownership of the /etc/burp directory, which might allow local users to obtain read and write access to arbitrary files by leveraging access to a certain account for a burp-server.conf change.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
burp_project burp |