Lucene search
K

135 matches found

Mageia
Mageia
added 2018/01/24 10:37 p.m.28 views

Updated systemd packages fix security vulnerability

In systemd prior to 234 a race exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race like this may lead to denial of service, unti...

5.9CVSS2.1AI score0.0726EPSS
Exploits0References2
NVD
NVD
added 2015/10/14 1:59 a.m.25 views

CVE-2015-2553

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles junctions during mountpoint creation, which makes it easier for local users to gain privileges ...

7.2CVSS6.4AI score0.03264EPSS
Exploits8References4
Cvelist
Cvelist
added 2015/10/14 1:0 a.m.30 views

CVE-2015-2553

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles junctions during mountpoint creation, which makes it easier for local users to gain privileges ...

6.3AI score0.03264EPSS
Exploits8References4
CVE
CVE
added 2015/10/14 1:0 a.m.86 views

CVE-2015-2553

CVE-2015-2553 affects the Windows kernel’s handling of mountpoint creation for reparse points, enabling local privilege escalation via sandboxed environments on Windows Vista/7/8/8.1/10 and corresponding server editions. Public writeups describe bypasses of the mitigation introduced by MS15-111 (...

7.2CVSS6.4AI score0.03264EPSS
Exploits8References4Affected Software9
OSV
OSV
added 2014/08/01 11:13 a.m.1 views

DEBIAN-CVE-2014-5045

The mountpointlast function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial of service memory consumption or use-after-free ...

6.2CVSS6.3AI score0.00487EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2014/06/20 12:0 a.m.44 views

unbreakable enterprise kernel security update

kernel-uek 2.6.32-400.36.3uek - fix autofs/afs/etc. magic mountpoint breakage Al Viro Orabug: 19028505 CVE-2014-0203 - SELinux: Fix kernel BUG on empty security contexts. Stephen Smalley Orabug: 19028381 CVE-2014-1874 - floppy: don't write kernel-only members to FDRAWCMD ioctl output Matthew Dale...

7.2CVSS2.1AI score0.006EPSS
Exploits1
Prion
Prion
added 2014/03/14 3:55 p.m.23 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted iCalendar file to the calendar application, the 2 dir or 3 file parameter to apps/filespdfviewer/viewer.php, or the 4 mountpoint parameter...

4.3CVSS6AI score0.01005EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/03/14 3:0 p.m.27 views

CVE-2013-0298

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted iCalendar file to the calendar application, the 2 dir or 3 file parameter to apps/filespdfviewer/viewer.php, or the 4 mountpoint parameter...

5.7AI score0.01005EPSS
Exploits0References1
securityvulns
securityvulns
added 2014/03/13 12:0 a.m.38 views

udisk buffer overflow

Buffer overflow on oversized mountpoint filname...

6.9CVSS4.4AI score0.0043EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2014/02/15 2:57 p.m.6 views

CVE-2011-1832

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

8.7AI score
Exploits0References4
OSV
OSV
added 2014/02/15 2:57 p.m.1 views

DEBIAN-CVE-2011-1832

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

2.1CVSS6.6AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2014/02/15 2:57 p.m.14 views

CVE-2011-1831

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call...

8.9AI score
Exploits0References4
NVD
NVD
added 2014/02/15 2:57 p.m.23 views

CVE-2011-1832

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

2.1CVSS8.8AI score0.00382EPSS
Exploits0References4
Prion
Prion
added 2014/02/15 2:57 p.m.17 views

Design/Logic Flaw

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call...

4.6CVSS6.6AI score0.00366EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2014/02/15 2:57 p.m.19 views

Information disclosure

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

2.1CVSS6.4AI score0.00382EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2014/02/15 11:0 a.m.71 views

CVE-2011-1832

CVE-2011-1832 affects ecryptfs-utils prior to version 90. A race condition in mount.ecryptfs_private’s mountpoint permission check could allow a local user to remove directories via an unmount call. The issue stems from inadequate validation before unmount/mount operations, enabling potential man...

2.1CVSS8.4AI score0.00382EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVE
added 2014/02/15 11:0 a.m.30 views

CVE-2011-1832

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

2.1CVSS8.8AI score0.00382EPSS
Exploits0
Cvelist
Cvelist
added 2014/02/15 11:0 a.m.24 views

CVE-2011-1832

utils/mount.ecryptfsprivate.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call...

8.7AI score0.00382EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2013/01/11 12:0 a.m.23 views

quota security and bug fix update

1:3.13-8.0.1 - Add ocfs2 support Orabug: 14208111 1:3.13-8 - Fix CVE-2012-3417 incorrect use of tcpwrappers Resolves: 841448 1:3.13-7 - Fix parsing numeric arguments of setquota Resolves: 831520 1:3.13-6 - Do not use real domains in warnquota example Resolves: 680429 - Use /proc/mounts for...

4CVSS6.5AI score0.03147EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2012/06/25 12:0 a.m.40 views

mount-cifs: Multiple vulnerabilites

Background mount-cifs is the cifs filesystem mount helper split from Samba. Description Multiple vulnerabilities have been discovered in mount-cifs. Please review the CVE identifiers referenced below for details. Impact The vulnerabilities allow local users to cause a denial of service mtab...

4.4CVSS6.3AI score0.00522EPSS
Exploits1
Rows per page
Query Builder