Lucene search
Thomas Chauchefoin (@swapgs) from Synacktiv (@Synacktiv)ZDI-20-980HistoryAug 11, 2020 - 12:00 a.m.
Canonical Ubuntu Point-to-Point Protocol Daemon Arbitrary File Read Information Disclosure Vulnerability
2020-08-1100:00:00
Thomas Chauchefoin (@swapgs) from Synacktiv (@Synacktiv)
www.zerodayinitiative.com
20
vulnerability
local attackers
arbitrary files
canonical ubuntu
low-privileged code
environment variables
validation
user-supplied data
stored credentials
EPSS
0.001
Percentile
28.9%
This vulnerability allows local attackers to read arbitrary files on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of environment variables in pppd. The issue results from the lack of proper validation of user-supplied data, which can allow the read of arbitrary files. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise.
Related
prion
prion
Design/Logic Flaw
2020-09-01 00:15:00
redhatcve
redhatcve
CVE-2020-15704
2020-09-10 10:02:18
cvelist
cvelist
CVE-2020-15704 pppd arbitrary file read information disclosure vulnerability
2020-08-31 23:15:14
ubuntu
ubuntu
ppp vulnerability
2020-08-04 00:00:00
ppp vulnerability
2020-08-06 00:00:00
debiancve
debiancve
CVE-2020-15704
2020-09-01 00:15:09
openvas
openvas
Ubuntu: Security Advisory (USN-4451-1)
2020-08-05 00:00:00
Ubuntu: Security Advisory (USN-4451-2)
2022-08-26 00:00:00
ubuntucve
ubuntucve
CVE-2020-15704
2020-08-04 00:00:00
cve
cve
CVE-2020-15704
2020-09-01 00:15:09
nvd
nvd
CVE-2020-15704
2020-09-01 00:15:09
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ppp vulnerability (USN-4451-1)
2020-08-06 00:00:00