4 matches found
CVE-2010-2961
CVE-2010-2961 concerns mountall before 2.15.2, where the root.rules file is created with world-writable permissions (0666). This enables a local attacker to modify the file and potentially gain root privileges by triggering udev rules. Ubuntu’s USN-985-1 documents the fix: upgrade mountall to ver...
Ubuntu: Security Advisory (USN-985-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS : mountall vulnerability (USN-985-1)
Alasdair MacGregor discovered that mountall created a udev rule file with world-writable permissions. A local attacker could exploit this under certain conditions to cause udev to execute arbitrary commands as the root user. Note that Tenable Network Security has extracted the preceding descripti...
CVE-2010-2961
mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file...