CVE-2015-3202
published 2015-07-02CVE-2015-3202: fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write…
low3.6CVSS 3.1
AVLACLAuNCNIPAP
EXPLOIT
fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mount's debugging feature.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | fuse | < fuse 2.9.3-16 (bookworm) | fuse 2.9.3-16 (bookworm) |
| debian | ntfs-3g | < fuse 2.9.3-16 (bookworm) | fuse 2.9.3-16 (bookworm) |
| fuse_project | fuse | <= 2.9.2 | — |
| redhat | fuse | >= 0 < 2.9.3-16 | 2.9.3-16 |
| redhat | fuse | >= 0 < 2.9.3-16 | 2.9.3-16 |
| redhat | fuse | >= 0 < 2.9.3-16 | 2.9.3-16 |
| tuxera | ntfs-3g | >= 0 < 1:2014.2.15AR.3-3 | 1:2014.2.15AR.3-3 |
| tuxera | ntfs-3g | >= 0 < 1:2014.2.15AR.3-3 | 1:2014.2.15AR.3-3 |
| tuxera | ntfs-3g | >= 0 < 1:2014.2.15AR.3-3 | 1:2014.2.15AR.3-3 |
| tuxera | ntfs-3g | >= 0 < 1:2014.2.15AR.3-3 | 1:2014.2.15AR.3-3 |
CVSS provenance
nvd3.6LOWAV:L/AC:L/Au:N/C:N/I:P/A:P
osv3.6LOW