CVE-2007-2075

Опубликовано: 18 апр. 2007

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

ScramDisk 4 Linux before 1.0-1 does not perform permission checks on mount points, which allows local users to gain privileges by using a system directory as a mount point for a container.

Ссылки

http://osvdb.org/34966
http://secunia.com/advisories/24903
Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=1696780&group_id=101952&atid=630783
Patch
http://www.securityfocus.com/bid/23495
http://www.vupen.com/english/advisories/2007/1418
https://exchange.xforce.ibmcloud.com/vulnerabilities/33677
http://osvdb.org/34966
http://secunia.com/advisories/24903
Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=1696780&group_id=101952&atid=630783
Patch
http://www.securityfocus.com/bid/23495
http://www.vupen.com/english/advisories/2007/1418
https://exchange.xforce.ibmcloud.com/vulnerabilities/33677

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scramdisk_4_linux:scramdisk_4_linux:*:*:*:*:*:*:*:*

Версия до 1.0.0 (включая)

EPSS

Процентиль: 15%

0.00048

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-f2pw-9jqv-fw4r

github

почти 4 года назад