New Search

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values which might allow attackers to gain privileges via helpers such as mount.nfs.

oval:org.mitre.oval:def:10101

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values which might allow attackers to gain privileges via helpers such as mount.nfs.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 3
  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 5
  • Oracle Linux 5
  • Oracle Linux 4
  • CentOS Linux 4
  • CentOS Linux 5
  • Red Hat Enterprise Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2007-5191
Product(s):