header-logo
Suggest Exploit
vendor:
Logwatch
by:
7.5
CVSS
HIGH
Local privilege escalation
CWE
Product Name: Logwatch
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Logwatch Local Privilege Escalation Vulnerability

Local attackers can exploit this issue execute arbitrary code with superuser privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.

Mitigation:

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/46554/info

Logwatch is prone to a local privilege-escalation vulnerability.

Local attackers can exploit this issue execute arbitrary code with superuser privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition. 

% echo "fake" > â??/var/log/httpd/fakee;who;access_log.2â??