An issue exists in Quagga up to and including 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users (with control of the non-root-owned directory /etc/quagga) to escalate their privileges to root upon package installation or update.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quagga quagga |