Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-10T22:00:00
Updated: 2007-03-21T09:00:00
Reserved: 2007-03-10T00:00:00
Link: CVE-2007-1400
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-10T22:19:00.000
Modified: 2011-03-08T02:52:04.533
Link: CVE-2007-1400
JSON object: View
Redhat Information
No data.
CWE