CVE-2021-3156 icon indicating copy to clipboard operation
CVE-2021-3156 copied to clipboard

Published 20 hours ago verified publisher icon worawit

Centos 8 can be used, but some configuration needs to be modified

Open s1g0day opened this issue 3 years ago • 0 comments

exploit_nss.py文件的187行 proc = subprocess.Popen(['ip', 'addr'], stdout=subprocess.PIPE, bufsize=1, universal_newlines=True)

Generally, ip addr cannot be used directly under low authority. It can be modified to /sbin/ip and modified to ['/sbin/ip','addr']

s1g0day avatar Oct 29 '21 06:10 s1g0day