CVE-2016-9274

Sažetak

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected.

Reference

http://www.securityfocus.com/bid/94289
https://github.com/git-for-windows/git/issues/944
https://www.youtube.com/watch?v=S7jOLv0sul0

CVSS

Base:	4.4
Impact:	6.4
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

13-08-2020 - 19:37

Objavljeno

11-11-2016 - 17:59