12 matches found
EUVD-2005-2876
Malware in sbrugna...
PT-2025-38013
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null-pointer dereference issue was identified in the ext4 filesystem within the Linux kernel. The vulnerability occurs during the ext4 write info function, potentially triggered duri...
CVE-2020-7628
umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...
The vulnerability of the exec function in the umount package manager of the NPM allows a hacker to execute arbitrary commands.
The vulnerability of the exec function in the umount package manager of the NPM is related to the lack of security measures for handling web page structures. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
GHSA-6Q48-VJQ2-MWCJ Command Injection in umount
All versions of umount are vulnerable to Command Injection. The package fails to sanitize input rules and passes it directly to an exec call on the umount function . This may allow attackers to execute arbitrary code in the system if the device value passed to the function is user-controlled...
umount command injection vulnerability
umount is a package for uninstalling devices in Unix platforms. An injection vulnerability exists in umount 1.1.6 and earlier versions, which stems from the program cleaning up user-entered 'device' parameters. No details of the vulnerability are provided at this time...
Command injection
umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...
DEBIAN-CVE-2013-0157
a mount and b umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by 1 using the --guess-fstype command-line option or 2 attempting to mount a non-existent device, which generates different error messages dependin...
CVE-2007-0822
umount, when running with the Linux 2.6.15 kernel on Slackware Linux 10.2, allows local users to trigger a NULL dereference and application crash by invoking the program with a pathname for a USB pen drive that was mounted and then physically removed, which might allow the users to obtain sensiti...
GLSA-200509-15 : util-linux: umount command validation error
The remote host is affected by the vulnerability described in GLSA-200509-15 util-linux: umount command validation error When a regular user mounts a filesystem, they are subject to restrictions in the /etc/fstab configuration file. David Watson discovered that when unmounting a filesystem with t...
USN-184-1: umount vulnerability
David Watson discovered that "umount -r" removed some restrictive mount options like the "nosuid" flag. If /etc/fstab contains user-mountable removable devices which specify the "nosuid" flag which is common practice for such devices, a local attacker could exploit this to execute arbitrary...
CVE-2005-2876
umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r remount option, which causes the file system to be remounted with just the read-only flag, which effectively clears the...