Lucene search
Redhat.comRH:CVE-2008-3970HistoryOct 04, 2019 - 8:28 p.m.
CVE-2008-3970
2019-10-0420:28:49
redhat.com
access.redhat.com
5
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount.
Related
openvas
openvas
Mandriva Update for pam_mount MDVSA-2008:208 (pam_mount)
2009-04-09 00:00:00
Mandriva Update for pam_mount MDVSA-2008:208-1 (pam_mount)
2009-04-09 00:00:00
Mandriva Update for pam_mount MDVSA-2008:208 (pam_mount)
2009-04-09 00:00:00
cve
cve
CVE-2008-3970
2008-09-11 01:13:47
debiancve
debiancve
CVE-2008-3970
2008-09-11 01:13:47
prion
prion
Design/Logic Flaw
2008-09-11 01:13:00
cvelist
cvelist
CVE-2008-3970
2008-09-10 15:00:00
nvd
nvd
CVE-2008-3970
2008-09-11 01:13:47
nessus
nessus
Mandriva Linux Security Advisory : pam_mount (MDVSA-2008:208-1)
2009-04-23 00:00:00
SuSE 10 Security Update : pam_mount (ZYPP Patch Number 5602)
2008-09-23 00:00:00
openSUSE 10 Security Update : pam_mount (pam_mount-5598)
2008-09-23 00:00:00
ubuntucve
ubuntucve
CVE-2008-3970
2008-09-11 00:00:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for RH:CVE-2008-3970