Root Access Vulnerability in LTSP LDM by LTSP
CVE-2019-20373

7.8HIGH

Key Information:

Vendor
Debian
Status
Debian Linux
Vendor
CVE Published:
9 January 2020

Summary

The LTSP LDM, as of versions up to 2.18.06, has a vulnerability that permits root access for fat clients. This issue arises due to the LDM_USERNAME variable potentially being empty when the user's shell does not support Bourne shell syntax. This vulnerability is tied to the run-x-session script, which can lead to unauthorized access and potential system compromise.

References

https://git.launchpad.net/~ltsp-upstream/ltsp/+git/ldm/co...
x_refsource_MISC
https://www.debian.org/security/2020/dsa-4601
vendor-advisoryx_refsource_DEBIAN
https://lists.debian.org/debian-lts-announce/2020/01/msg0...
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.