CVE-2007-5191
HIGH severity · CVSS 7.2 · CWE-252
7.2CVSS HIGH
Summary
mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.
Impact & exploitability
Attack vectorLocal
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)0%
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://bugs.gentoo.org/show_bug.cgi?id=195390Advisory
- http://frontal2.mandriva.com/en/security/advisories?name=MDKSA-2007:198Advisory
- http://git.kernel.org/?p=utils/util-linux-ng/util-linux-ng.git%3Ba=commit%3Bh=ebbeb2c7ac1b00b6083905957837a271e80b187e
- http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.htmlAdvisory
- http://lists.vmware.com/pipermail/security-announce/2008/000002.htmlAdvisory
- http://secunia.com/advisories/27104Advisory
- http://secunia.com/advisories/27122Advisory
- http://secunia.com/advisories/27145Advisory