Elevation of Privilege Vulnerability in network d-dispatcher daemon of Linux

Post author:shashikant redekar
Post published:May 5, 2022
Post category:Cyber Security
Post comments:0 Comments

Original Issue Date: May 04, 2022

Severity Rating: MEDIUM

Software Affected

Network d-dispatcher daemon shipped with some Linux distros

Overview

Multiple vulnerabilities have been reported in the network d-dispatcher daemon which could allow an attacker to gain elevated privileges on the targeted system.

Description

This vulnerability exists in the network d-dispatcher daemon which comes bundled with several Linux distros due to three flaws ¿Directory Traversal (CVE-2022-29799), race condition due to Symlink links and Time-of-check-time-of-use (TOCTOU) race condition (CVE-2022-29800).

A combination of the above vulnerabilities may allow an attacker to escalate privileges on the targeted system.

Successful exploitation of this vulnerability could allow an attacker to gain elevated privileges on the targeted system.

Solution

Apply appropriate fixes as soon as they are made available by the provider.

Please Share This Share this content

You Might Also Like

￼How to Prevent Social Engineering Attacks

Multiple Vulnerabilities in Cisco IOS XR software

Multiple Vulnerabilities in Apache Open office

Leave a Reply Cancel reply

Share this content

How to Prevent Social Engineering Attacks