Full title: Traceroute 2.1.2 Privilege Escalation Vulnerability 
Category: local exploits
Platform: linux
In Traceroute versions 2.0.12 through to 2.1.2, the wrapper scripts mishandle shell metacharacters, which can lead to privilege escalation if the wrapper scripts are executed via sudo. The affected wrapper scripts include tcptraceroute, tracepath, traceproto, and traceroute-nanog. Version 2.1.3 addresses this issue.

# 0day.today @ http://0day.today/