CVE-2005-2876 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-2876
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-2876

Description: umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r (remount) option, which causes the file system to be remounted with just the read-only flag, which effectively clears the nosuid, nodev, and other flags.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/22241 UBUNTU http://www.ubuntu.com/usn/usn-184-1 TRUSTIX http://marc.theaimsgroup.com/?l=bugtraq&m=112690609622266&w=2 SUSE http://www.novell.com/linux/security/advisories/2005_21_sr.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-101960-1 SAID Secunia Advisory: SA17027 Secunia Advisory: SA16988 Secunia Advisory: SA17133 Secunia Advisory: SA18502 Secunia Advisory: SA17154 Secunia Advisory: SA17004 Secunia Advisory: SA16785 OSVDB 19369 MISC http://support.avaya.com/elmodocs2/security/ASA-2006-014.htm FEDORA http://www.securityfocus.com/archive/1/archive/1/419774/100/0/threaded DEBIAN http://www.debian.org/security/2005/dsa-823 http://www.debian.org/security/2005/dsa-825 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=112656096125857&w=2 BID 14816

Return to the previous page.