RSS   Podatności dla 'Sandboxie'   RSS

2018-10-29
 
CVE-2018-18748

CWE-20
 

 
** DISPUTED ** Sandboxie 5.26 allows a Sandbox Escape via an "import os" statement, followed by os.system("cmd") or os.system("powershell"), within a .py file. NOTE: the vendor disputes this issue because the observed behavior is consistent with the product's intended functionality.

 

 >>> Vendor: Sandboxie 2 Produkty
Sandboxie installer
Sandboxie


Copyright 2021, cxsecurity.com

 

Back to Top