Vulnerability: Root Privilege Escalation via Crafted Spec File in Mock's SCM Plug-in

Vulnerability: Root Privilege Escalation via Crafted Spec File in Mock's SCM Plug-in

CVE-2016-6299 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.

Learn more about our Web Application Penetration Testing UK.