9 matches found
openSUSE Security Update : pam_mount (pam_mount-191)
pammount allowed users to mount arbitrary devices to any directory when the 'luserconf' configuration directive was set CVE-2008-3970. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Mandriva Linux Security Advisory : pam_mount (MDVSA-2008:208-1)
pammount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount. The updated packages have been patched to fix the issue. Update : The fi...
Mandriva Update for pam_mount MDVSA-2008:208-1 (pam_mount)
Check for the Version of pammount OpenVAS Vulnerability Test Mandriva Update for pammount MDVSA-2008:208-1 pammount Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Mandriva Update for pam_mount MDVSA-2008:208-1 (pam_mount)
Check for the Version of pammount OpenVAS Vulnerability Test Mandriva Update for pammount MDVSA-2008:208-1 pammount Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
openSUSE 10 Security Update : pam_mount (pam_mount-5598)
pammount allowed users to mount arbitrary devices to any directory when the 'luserconf' configuration directive was set CVE-2008-3970. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
SuSE 10 Security Update : pam_mount (ZYPP Patch Number 5602)
pammount allowed users to mount arbitrary devices to any directory when the 'luserconf' configuration directive was set. CVE-2008-3970 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ...
CVE-2008-3970
pammount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount...
CVE-2008-3970
pammount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount...
CVE-2008-3970
CVE-2008-3970 affects pam_mount 0.10–0.45 when the luserconf option is enabled. The vulnerability arises because mounting a user-defined volume does not verify mountpoint and source ownership, allowing local users to bypass access restrictions via a local mount. Connected advisories (Mandriva, SU...