Lucene search

[email protected]NVD:CVE-2011-0541

HistorySep 02, 2011 - 11:55 p.m.

CVE-2011-0541

2011-09-0223:55:02

CWE-59

[email protected]

web.nvd.nist.gov

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount arbitrary directories via a symlink attack.

Affected configurations

NVD

Node

fusefuseRange≤2.8.5

fusefuseMatch1.9

fusefuseMatch2.0pre0

fusefuseMatch2.0pre1

fusefuseMatch2.1

fusefuseMatch2.2

fusefuseMatch2.2.1

fusefuseMatch2.3pre

fusefuseMatch2.3rc1

fusefuseMatch2.3.0

fusefuseMatch2.4.0

fusefuseMatch2.4.1

fusefuseMatch2.4.2

fusefuseMatch2.5.0

fusefuseMatch2.5.1

fusefuseMatch2.5.2

fusefuseMatch2.5.3

fusefuseMatch2.6.0

fusefuseMatch2.6.1

fusefuseMatch2.6.3

fusefuseMatch2.6.5

fusefuseMatch2.7.0

fusefuseMatch2.7.1

fusefuseMatch2.7.2

fusefuseMatch2.7.3

fusefuseMatch2.7.4

fusefuseMatch2.7.5

fusefuseMatch2.7.6

fusefuseMatch2.8.0

fusefuseMatch2.8.1

fusefuseMatch2.8.2

fusefuseMatch2.8.3

fusefuseMatch2.8.4

References

fuse.git.sourceforge.net/git/gitweb.cgi?p=fuse/fuse%3Ba=commit%3Bh=bf5ffb5fd8558bd799791834def431c0cee5a11f

lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

www.openwall.com/lists/oss-security/2011/02/02/2

www.openwall.com/lists/oss-security/2011/02/03/5

www.openwall.com/lists/oss-security/2011/02/08/4

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2011-0541

debiancve1 prion1 veracode1 cvelist1 cve1 ubuntucve1 ubuntu1 nessus10 securityvulns2 openvas5 oraclelinux1 redhat1