Back to search
CVE-2010-3879
Published: Jan 22, 2011
Modified: Aug 7, 2024
PUBLISHED
Description
FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink attack on the parent directory of the mountpoint of a FUSE filesystem, a different vulnerability than CVE-2010-0789.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.halfdog.net/Security/FuseTimerace/
x_refsource_MISC
USN-1045-1
vendor-advisory
x_refsource_UBUNTU
42965
third-party-advisory
x_refsource_SECUNIA
fuse-fusermount-tool-dos(62986)
vdb-entry
x_refsource_XF
20101102 fusermount: Unmount any filesystem
mailing-list
x_refsource_FULLDISC
[oss-security] 20101104 CVE request: fuse
mailing-list
x_refsource_MLIST
ADV-2011-0302
vdb-entry
x_refsource_VUPEN
https://bugzilla.novell.com/show_bug.cgi?id=651598
x_refsource_CONFIRM
ADV-2011-0181
vdb-entry
x_refsource_VUPEN
SUSE-SR:2011:005
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=651183
x_refsource_CONFIRM
42961
third-party-advisory
x_refsource_SECUNIA
https://bugs.launchpad.net/bugs/670622
x_refsource_CONFIRM
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602333
x_refsource_CONFIRM
44623
vdb-entry
x_refsource_BID
[oss-security] 20101105 Re: CVE request: fuse
mailing-list
x_refsource_MLIST
USN-1045-2
vendor-advisory
x_refsource_UBUNTU
FEDORA-2011-0854
vendor-advisory
x_refsource_FEDORA
70520
vdb-entry
x_refsource_OSVDB
MDVSA-2013:155
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now