Main
Vulnerability Database
Exploits
ID:10744 - Exploit for Incorrect default permissions in Screen - CVE-2023-24626
ID:10744 - Exploit for Incorrect default permissions in Screen - CVE-2023-24626
Published: October 25, 2024
Vulnerability identifier: #VU77905
Vulnerability risk: Low
CVE-ID: CVE-2023-24626
CWE-ID: CWE-276
Exploitation vector: Local access
Vulnerable software:
Screen
Screen
Link to public exploit:
Vulnerability description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to missing permissions checks in socket.c, which allows a local user to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process.
Remediation
Install updates from vendor's website.