seatd-launch in seatd 0.6.x prior to 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
seatd project seatd |