Security Advisory

CVE-2011-4338

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-12 18:11:17

Last updated 2024-08-07 00:01:51

Assigner redhat

State PUBLISHED

Description

Shaman 1.0.9: Users can add the line askforpwd=false to his shaman.conf file, without entering the root password in shaman. The next time shaman is run, root privileges are granted despite the fact that the user never entered the root password.

← Browse all CVEs View on cve.org ↗