Privilege Escalation via tmux -S Command-Line Option

Privilege Escalation via tmux -S Command-Line Option

CVE-2011-1496 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

tmux 1.3 and 1.4 does not properly drop group privileges, which allows local users to gain utmp group privileges via a filename to the -S command-line option.

Learn more about our User Device Pen Test.