[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247621

 
 

909

 
 

194512

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-1072Date: (C)2009-03-24   (M)2024-02-22


nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.9
Exploit Score: 3.9
Impact Score: 6.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: COMPLETE
Availability: NONE
  
Reference:
http://www.securityfocus.com/archive/1/507985/100/0/threaded
BID-34205
SECUNIA-34422
SECUNIA-34432
SECUNIA-34786
SECUNIA-35121
SECUNIA-35185
SECUNIA-35343
SECUNIA-35390
SECUNIA-35394
SECUNIA-35656
SECUNIA-37471
ADV-2009-0802
ADV-2009-3316
DSA-1800
RHSA-2009:1081
SUSE-SA:2009:021
SUSE-SA:2009:028
SUSE-SA:2009:030
SUSE-SA:2009:031
USN-793-1
[linux-kernel]
http://thread.gmane.org/gmane.linux.kernel/805280
http://www.openwall.com/lists/oss-security/2009/03/23/1
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=76a67ec6fb79ff3570dcb5342142c16098299911
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.9
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
linux-kernel-capmknod-security-bypass(49356)
oval:org.mitre.oval:def:10314
oval:org.mitre.oval:def:8382

CPE    16
cpe:/o:opensuse:opensuse:11.1
cpe:/o:opensuse:opensuse:11.0
cpe:/o:opensuse:opensuse:10.3
cpe:/o:debian:debian_linux:4.0
...
CWE    1
CWE-16
OVAL    10
oval:org.secpod.oval:def:202070
oval:org.secpod.oval:def:500599
oval:org.secpod.oval:def:202123
oval:org.mitre.oval:def:8300
...

© SecPod Technologies