RSS   Vulnerabilities for 'Pam mount'   RSS

2008-09-10
 
CVE-2008-3970

CWE-264
 

 
pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount.

 


Copyright 2024, cxsecurity.com

 

Back to Top