pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T10:00:42.050Z
Reserved: 2008-09-09T00:00:00
Link: CVE-2008-3970

No data.

Status : Modified
Published: 2008-09-11T01:13:47.773
Modified: 2024-11-21T00:50:36.360
Link: CVE-2008-3970

No data.