Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-3879Link Following in Project Libfuse

CWE-59Link Following12 documents9 sources
Severity
5.8MEDIUMNVD
CNA3.3OSV3.3
EPSS
2.7%
top 14.14%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Redhat FuseLibfuse Project Libfuse
Timeline
PublishedJan 22
Latest updateMay 13

Description

FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink attack on the parent directory of the mountpoint of a FUSE filesystem, a different vulnerability than CVE-2010-0789.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

Debianredhat/fuse< 2.8.5-1+2

Patches

Patch: bugs.debian.orgPatch: www.halfdog.netPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-9qwx-j72c-6hr4: FUSE, possibly 22022-05-13
CVEList
CVE-2010-3879: FUSE, possibly 22011-01-22
OSV
CVE-2010-3879: FUSE, possibly 22011-01-22

💥Exploits & PoCs

1
Exploit-DB
FUSE fusermount Tool - Race Condition2010-11-02

📋Vendor Advisories

4
Ubuntu
util-linux update2011-01-19
Ubuntu
FUSE vulnerability2011-01-19
Red Hat
fuse: unprivileged user can unmount arbitrary locations via symlink attack2010-11-02
Debian
CVE-2010-3879: fuse - FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with...2010

💬Community

3
Bugzilla
CVE-2010-3879 fuse: unprivileged user can unmount arbitrary locations via symlink attack [fedora-all]2011-01-27
Bugzilla
CVE-2010-3879 fuse: unprivileged user can unmount arbitrary locations via symlink attack [fedora-all]2011-01-27
Bugzilla
CVE-2010-3879 CVE-2011-0541 CVE-2011-0542 CVE-2011-0543 fuse: unprivileged user can unmount arbitrary locations via symlink attack2010-11-08
CVE-2010-3879 — Link Following in Project Libfuse | cvebase