Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl.
Score: 0.0
Priority: Unclassified
Score: 0.00056
Percentile:
0.17594
CVSS v2 Score: 6.9
Severity: