RSS   Vulnerabilities for 'Loop-aes-utils'   RSS

2007-10-04
 
CVE-2007-5191

CWE-264
 

 
mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.

 


Copyright 2024, cxsecurity.com

 

Back to Top