Vulnerability Details : CVE-2010-0789
fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint.
Products affected by CVE-2010-0789
- cpe:2.3:a:fuse:fuse:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.3:pre:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.0:pre0:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.0:pre1:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:fuse:fuse:2.7.4:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2010-0789
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 8 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0789
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.3
|
LOW | AV:L/AC:M/Au:N/C:N/I:P/A:P |
3.4
|
4.9
|
NIST |
CWE ids for CVE-2010-0789
-
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2010-0789
-
Red Hat 2010-04-07Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2010-0789 This issue affects Red Hat Enterprise Linux 5 because it ships fusermount suid root, however the impact of this flaw is minimized due to the fact that only members in group fuse may use it the executable is owned root:fuse and mode 4750. Red Hat Enterprise Linux 3 and 4 do not provide the fuse package. The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/
References for CVE-2010-0789
-
http://sourceforge.net/projects/fuse/files/ReleaseNotes/fuse-2.8.3.html/view
Filesystem in Userspace - Browse Files at SourceForge.net
-
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=567633
#567633 - race condition in fusermount - Debian Bug report logs
-
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2010:013
-
http://sourceforge.net/projects/fuse/files/fuse-2.X/2.7.5/fuse-2.7.5.tar.gz/download
Filesystem in Userspace - Browse Files at SourceForge.netPatch
-
http://www.securityfocus.com/bid/37983
FUSE 'fusermount' Race Condition VulnerabilityPatch
-
http://www.vupen.com/english/advisories/2010/1107
Webmail | OVH- OVH
-
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2010:003
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/55945
FUSE fusermount denial of service CVE-2010-0789 Vulnerability Report
-
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034518.html
[SECURITY] Fedora 11 Update: fuse-2.8.1-2.fc11
-
http://www.ubuntu.com/usn/USN-892-1
USN-892-1: FUSE vulnerability | Ubuntu security notices
-
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034580.html
[SECURITY] Fedora 12 Update: fuse-2.8.1-4.fc12
-
http://www.debian.org/security/2010/dsa-1989
Debian -- Security Information -- DSA-1989-1 fusePatch
-
https://bugzilla.redhat.com/show_bug.cgi?id=558833
558833 – CVE-2009-3297 samba, fuse, ncpfs: Race condition by mount (mount.cifs, ncpmount) / umount (fusermount, ncpumount) operations [Fedora all]
-
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2010:011
-
https://bugzilla.redhat.com/show_bug.cgi?id=532940
532940 – (CVE-2010-0788) CVE-2010-0788 ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operationsPatch
Jump to