Lucene search
K

263 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1677

mount in util-linux 2.19 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

4.6CVSS9AI score0.00449EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.3 views

SUSE CVE-2011-1678

smbfs in Samba 3.5.8 and earlier attempts to use 1 mount.cifs to append to the /etc/mtab file and 2 umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process wi...

3.3CVSS8.4AI score0.00531EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1681

vmware-hgfsmounter in VMware Open Virtual Machine Tools aka open-vm-tools 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small...

3.3CVSS8.9AI score0.00441EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1749

The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...

3.3CVSS8.8AI score0.00359EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:51 a.m.6 views

SUSE CVE-2011-3145

When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...

9.8CVSS7AI score0.0098EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.5 views

SUSE CVE-2011-3585

Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...

4.7CVSS6.4AI score0.00317EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.4 views

SUSE CVE-2015-3202

fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking 1 mount or 2 umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNTMTAB environment variable that is used by mount's debugging feature...

3.6CVSS6.7AI score0.01008EPSS
Exploits5References5
Veracode
Veracode
added 2020/04/10 1:8 a.m.51 views

Denial Of Service (DoS)

glibc is vulnerable to denial of service. It was found that the glibc addmntent function, used by various mount helper utilities, did not handle certain errors correctly when updating the mtab mounted file systems table file. If such utilities had the setuid bit set, a local attacker could use th...

3.3CVSS3AI score0.00417EPSS
Exploits0References25Affected Software1
Veracode
Veracode
added 2020/04/10 1:7 a.m.28 views

Denial Of Service (DoS)

nfs-utils is vulnerable to denial of service. It was found that the mount.nfs tool did not handle certain errors correctly when updating the mtab mounted file systems table file. A local attacker could use this flaw to corrupt the mtab file...

3.3CVSS2.8AI score0.00359EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2020/04/10 1:7 a.m.30 views

Privilege Escalation

util-linux is vulnerable to privilege escalation. A local, unprivileged user allowed to mount or unmount file systems could use these flaws to corrupt the mtab file and create a stale lock file, preventing other users from mounting and unmounting file systems...

4.6CVSS4.2AI score0.00449EPSS
Exploits0References22Affected Software2
Veracode
Veracode
added 2020/04/10 1:7 a.m.37 views

Privilege Escalation

util-linux is vulnerable to privilege escalation. A local, unprivileged user allowed to mount or unmount file systems could use these flaws to corrupt the mtab file and create a stale lock file, preventing other users from mounting and unmounting file systems...

3.3CVSS4.2AI score0.00404EPSS
Exploits0References22Affected Software2
Veracode
Veracode
added 2020/04/10 1:2 a.m.28 views

Denial Of Service (DoS)

encryptfs-utils is vulnerable to denial of service. It was found that mount.ecryptfsprivate did not handle certain errors correctly when updating the mtab mounted file systems table file, allowing a local attacker to corrupt the mtab file and possibly unmount an arbitrary file system...

2.1CVSS4.7AI score0.00382EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2020/04/10 1:1 a.m.35 views

Insecure Resource Limit Verification

samba does not properly verify resource limits. It was found that the mount.cifs tool did not handle certain errors correctly when updating the mtab file. If mount.cifs had the setuid bit set, a local attacker could corrupt the mtab file by setting a small file size limit before running mount.cif...

3.3CVSS1.7AI score0.00531EPSS
Exploits2References21Affected Software3
Veracode
Veracode
added 2020/04/10 12:55 a.m.36 views

Privilege Escalation

glibc is vulnerable to privilege escalation. It was discovered that the glibc addmntent function did not sanitize its input properly. A local attacker could possibly use this flaw to inject malformed lines into /etc/mtab via certain setuid mount helpers, if the attacker were allowed to mount to a...

7.2CVSS6AI score0.00592EPSS
Exploits1References25Affected Software1
OSV
OSV
added 2019/12/31 8:15 p.m.2 views

DEBIAN-CVE-2011-3585

Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...

4.7CVSS5.8AI score0.00317EPSS
Exploits0References1
NVD
NVD
added 2019/12/31 8:15 p.m.27 views

CVE-2011-3585

Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...

4.7CVSS4.5AI score0.00317EPSS
Exploits0References5
Prion
Prion
added 2019/12/31 8:15 p.m.26 views

Race condition

Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...

1.9CVSS6.5AI score0.00317EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2019/12/31 7:47 p.m.31 views

CVE-2011-3585

Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...

4.4AI score0.00317EPSS
Exploits0References5
OSV
OSV
added 2019/04/22 4:29 p.m.3 views

DEBIAN-CVE-2011-3145

When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...

9.8CVSS9.4AI score0.0098EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/22 3:35 p.m.24 views

CVE-2011-3145 mount.ecrpytfs_private sets group owner of /etc/mtab to user's primary group

When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...

3.8CVSS9.4AI score0.0098EPSS
Exploits0References1
Rows per page
Query Builder