CVE-2007-5964 — Autofs vulnerability

CWE-167 documents6 sources

Severity

6.9MEDIUMNVD

EPSS

0.0%

top 86.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Autofs Redhat Enterprise Linux

Timeline

PublishedDec 13

Latest updateMay 1

Description

The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NFS server.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

▶debiandebian/autofs< autofs 3.1.4-8 (bookworm)

Also affects: Enterprise Linux 5.0

🔴Vulnerability Details

GHSA

GHSA-fvq8-m245-r4cr: The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/↗2022-05-01

▶

OSV

CVE-2007-5964: The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/↗2007-12-13

▶

📋Vendor Advisories

Red Hat

autofs defaults don't restrict suid in /net↗2007-12-12

▶

Debian

CVE-2007-5964: autofs - The default configuration of autofs 5 in some Linux distributions, such as Red H...↗2007

▶

💬Community

Bugzilla

CVE-2007-5964 Privilege Escalation (from local system) through /net autofs mount configuration bug↗2007-12-04

▶

Bugzilla

CVE-2007-5964 autofs defaults don't restrict suid in /net↗2007-12-04

▶