Privilege Escalation via Insecure Permission Check in LXCFS

Privilege Escalation via Insecure Permission Check in LXCFS

CVE-2015-1344 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions, which allows local users to gain privileges by writing a pid to the tasks file.

Learn more about our User Device Pen Test.