There is something I don’t understand about the latest vulnerabilities annoncement.
Let’s take the example of ftp client. I login under my account, use ftp to connect to a server, then run the quote stuff, and my ftp client sigsegv.
The part I don’t understand is how come I end up getting bin privilieges. How does this happen? If I could get bin privilege just because a program sigsegv then the vulnerability should apply to any program not just ftp ?