CVE-2010-2961

Sažetak

mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.

Reference

http://secunia.com/advisories/41351
http://www.osvdb.org/67914
http://www.ubuntu.com/usn/USN-985-1
http://www.vupen.com/english/advisories/2010/2342
https://bugs.launchpad.net/ubuntu/+source/mountall/+bug/591807

CVSS

Base:	6.9
Impact:	10.0
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-09-2010 - 04:00

Objavljeno

14-09-2010 - 19:00