Lucene search
UbuntuUSN-892-1HistoryJan 28, 2010 - 12:00 a.m.
FUSE vulnerability
2010-01-2800:00:00
ubuntu.com
64
CVSS2
3.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
AI Score
6.1
Confidence
Low
EPSS
0.002
Percentile
59.8%
Releases
- Ubuntu 9.10
- Ubuntu 9.04
- Ubuntu 8.10
- Ubuntu 8.04
- Ubuntu 6.06
Packages
- fuse -
Details
Dan Rosenberg discovered that FUSE did not correctly check mount
locations. A local attacker, with access to use FUSE, could unmount
arbitrary locations, leading to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | fuse-utils | <Â 2.7.4-1.1ubuntu4.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | fuse-utils-udeb | <Â 2.7.4-1.1ubuntu4.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libfuse-dev | <Â 2.7.4-1.1ubuntu4.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libfuse2 | <Â 2.7.4-1.1ubuntu4.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libfuse2-udeb | <Â 2.7.4-1.1ubuntu4.3 | UNKNOWN |
| Ubuntu | 9.04 | noarch | fuse-utils | <Â 2.7.4-1.1ubuntu4.0.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | fuse-utils-udeb | <Â 2.7.4-1.1ubuntu4.0.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libfuse-dev | <Â 2.7.4-1.1ubuntu4.0.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libfuse2 | <Â 2.7.4-1.1ubuntu4.0.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libfuse2-udeb | <Â 2.7.4-1.1ubuntu4.0.9.04.1 | UNKNOWN |
Related
nessus
nessus
SuSE 11 Security Update : fuse (SAT Patch Number 1867)
2010-02-03 00:00:00
openSUSE Security Update : fuse (fuse-1897)
2010-02-15 00:00:00
Fedora 11 : fuse-2.8.1-2.fc11 (2010-1140)
2010-07-01 00:00:00
openvas
openvas
Fedora Update for fuse FEDORA-2010-1140
2010-03-02 00:00:00
Ubuntu: Security Advisory (USN-892-1)
2010-01-29 00:00:00
Fedora Update for fuse FEDORA-2010-1140
2010-03-02 00:00:00
cve
cve
nvd
nvd
debian
debian
[SECURITY] [DSA-1989-1] New fuse packages fix denial of service
2010-02-02 22:57:09
[SECURITY] [DSA-1989-1] New fuse packages fix denial of service
2010-02-02 22:57:09
[SECURITY] [DSA 2004-1] New samba packages fix several vulnerabilities
2010-02-28 21:55:00
fedora
fedora
[SECURITY] Fedora 11 Update: ncpfs-2.2.6-12.fc11
2010-01-28 01:03:13
[SECURITY] Fedora 12 Update: samba-3.4.5-55.fc12
2010-01-29 03:33:35
[SECURITY] Fedora 11 Update: fuse-2.8.1-2.fc11
2010-02-01 01:08:01
seebug
seebug
Samba 'mount.cifs'ćŹĺ°çšććĺćźć´
2010-02-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package fuse version 2.8.2-alt1
2010-01-27 00:00:00
Security fix for the ALT Linux 6 package ncpfs version 2.2.6-alt9
2011-03-09 00:00:00
cvelist
cvelist
securityvulns
securityvulns
[USN-893-1] Samba vulnerability
2010-02-04 00:00:00
Samba race conditions
2010-02-04 00:00:00
FUSE symlink vulnerabilities
2013-05-04 00:00:00
debiancve
debiancve
CVE-2010-0789
2010-03-02 18:30:01
CVE-2010-3879
2011-01-22 22:00:02
ubuntucve
ubuntucve
CVE-2010-0789
2010-03-02 00:00:00
CVE-2010-3879
2010-12-03 00:00:00
prion
prion
Code injection
2010-03-02 18:30:00
Code injection
2011-01-22 22:00:00
ubuntu
ubuntu
Samba vulnerability
2010-01-28 00:00:00
osv
osv
samba - several vulnerabilities
2010-02-28 00:00:00
fuse-2.9.5-1.6 on GA media
2024-06-15 00:00:00
CVSS2
3.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
AI Score
6.1
Confidence
Low
EPSS
0.002
Percentile
59.8%
Related for USN-892-1