Vulnerabilities > CVE-2007-1400 - Unspecified vulnerability in Plesh
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE local
plesh
Summary
Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |