From 5db4a75f46744c287c000e79f93e15cb974946a9 Mon Sep 17 00:00:00 2001 From: Andrea Cardaci Date: Thu, 23 Aug 2018 17:58:15 +0200 Subject: [PATCH] Fix SUID-limited description --- _data/functions.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/_data/functions.yml b/_data/functions.yml index ca15889..ef1d647 100644 --- a/_data/functions.yml +++ b/_data/functions.yml @@ -24,8 +24,9 @@ suid-limited: description: | It runs with the SUID bit set and may be exploited to access the file system, escalate or maintain access with elevated privileges working as a - SUID backdoor. Running `/bin/sh` only works on Debian systems that allow - SUID shell execution by default. + SUID backdoor. Internally it may run commands via `/bin/sh` (without the + `-p` option) so it only only works on Debian systems that allow SUID shell + execution by default. sudo-enabled: label: Sudo