HIGH7.2
Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
CVSS 2.0HIGH 7.2
CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:CReferences
Severity:
Closed issues (3)
LOW2.1
WEB-DAV Linux File System (davfs2) 0.2.3 does not properly enforce Unix permissions, which allows local users to write arbitrary files on a davfs2 mounted filesystem.
CVSS 2.0LOW 2.1
CVSS:2.0/AV:L/AC:L/Au:N/C:N/I:P/A:NHIGH7.2
WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in (1) kernel_interface.c and (2) mount_davfs.c, related to the "system" function.
CVSS 2.0HIGH 7.2
CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:CReferences
- http://osvdb.org/97416
- http://osvdb.org/97417
- http://savannah.nongnu.org/bugs/?40034
- http://seclists.org/oss-sec/2013/q3/627
- http://www.debian.org/security/2013/dsa-2765
- http://www.securityfocus.com/bid/62445
- https://security.gentoo.org/glsa/201612-02
- http://osvdb.org/97416
- http://osvdb.org/97417
- http://savannah.nongnu.org/bugs/?40034
- http://seclists.org/oss-sec/2013/q3/627
- http://www.debian.org/security/2013/dsa-2765
- http://www.securityfocus.com/bid/62445
- https://security.gentoo.org/glsa/201612-02