CVE-2010-2961
published 2010-09-14CVE-2010-2961: mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.
PriorityP428medium6.9CVSS 2.0
AVLACMAuNCCICAC
EXPLOIT
EPSS
0.48%
38.0th percentile
mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| scott_james_remnant | mountall | <= 2.14 | — |
| scott_james_remnant | mountall | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
mountall vulnerability
vendor_ubuntu·2010-09-08
CVE-2010-2961 mountall vulnerability
Title: mountall vulnerability
Summary: Local root escalation via writable udev rules.
Alasdair MacGregor discovered that mountall created a udev rule file
with world-writable permissions. A local attacker could exploit this
under certain conditions to cause udev to execute arbitrary commands as
the root user.
Instructions: In general, a standard system update will make all the necessary changes.
GHSA
GHSA-8693-g75h-9wvm: mountall
ghsa_unreviewed·2022-05-17
CVE-2010-2961 [MEDIUM] CWE-362 GHSA-8693-g75h-9wvm: mountall
mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/41351http://www.osvdb.org/67914http://www.ubuntu.com/usn/USN-985-1http://www.vupen.com/english/advisories/2010/2342https://bugs.launchpad.net/ubuntu/+source/mountall/+bug/591807http://secunia.com/advisories/41351http://www.osvdb.org/67914http://www.ubuntu.com/usn/USN-985-1http://www.vupen.com/english/advisories/2010/2342https://bugs.launchpad.net/ubuntu/+source/mountall/+bug/591807
2010-09-14
Published