secuvera-SA-2017-01: Privilege escalation in an OPSI Managed Client environment ("rise of the machines")

January 30, 2017 007admin Leave a comment

Posted by Simon Bieber on Jan 30

Affected Products
Tested with
OPSI Server 4.0.7.26
OPSI ClientAgent 4.0.7.10-1
(older releases have not been tested)
According to the vendor all server instances that use a python-opsi version lower
than 4.0.7.28-4 are affected

References
https://www.secuvera.de/advisories/secuvera-SA-2017-01.txt (used for updates)
https://sourceforge.net/p/opsi/mailman/message/35609086/ (announcement by vendor
in german…

007 Software

secuvera-SA-2017-01: Privilege escalation in an OPSI Managed Client environment ("rise of the machines")

Leave a Reply Cancel reply

Software and Security Information