Back to search
CVE-2006-3693
Published: Jul 19, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Rocks Clusters 4.1 and earlier allows local users to gain privileges via commands enclosed with escaped backticks (\`) in an argument to the (1) mount-loop (mount-loop.c) or (2) umount-loop (umount-loop.c) command, which is not filtered in a system function call.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://xavier.tigerteam.se/exploits/rocksumountdirty.py
x_refsource_MISC
rocks-mount-umount-privilege-escalation(27758)
vdb-entry
x_refsource_XF
19003
vdb-entry
x_refsource_BID
http://xavier.tigerteam.se/advisories/TSEAD-200606-6.txt
x_refsource_MISC
1242
third-party-advisory
x_refsource_SREASON
21065
third-party-advisory
x_refsource_SECUNIA
20060714 Rocks Clusters <=4.1 local root
mailing-list
x_refsource_BUGTRAQ
ADV-2006-2833
vdb-entry
x_refsource_VUPEN
http://xavier.tigerteam.se/exploits/rocksmountdirty.sh
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now