[原文]Abuse 2.00 and earlier allows local users to gain privileges via command line arguments that specify alternate Lisp scripts that run at escalated privileges, which can contain functions that execute commands or modify files.
Abuse Command Line Argument Arbitrary Lisp Script Execution
Local Access Required
Loss of Integrity
Abuse contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when Abuse starts up and is provided with external Lisp startup scripts to execute. This flaw may lead to the attacker executing arbitrary commands or modifying files with escalated privileges.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.