Home

CVE-2011-1831

Description

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.043

Associated Vulnerability

VulnerabilityOS Platform
ecryptfs-utils security update(DSA-3450-1) ecryptfs-utils_99-1+deb7u1_i386.debLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-75-5.el5_7.2.i386.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-75-5.el5_7.2.x86_64.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-82-6.el6_1.3.i686.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-82-6.el6_1.3.x86_64.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-devel-75-5.el5_7.2.i386.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-devel-75-5.el5_7.2.x86_64.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-devel-82-6.el6_1.3.i686.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-devel-82-6.el6_1.3.x86_64.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-gui-75-5.el5_7.2.i386.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-gui-75-5.el5_7.2.x86_64.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-python-82-6.el6_1.3.i686.rpmLinux
(RHSA-2011:1241) Moderate: ecryptfs-utils security update ecryptfs-utils-python-82-6.el6_1.3.x86_64.rpmLinux
Ecryptfs-utils update (ELSA-2011-1241) ecryptfs-utils-82-6.el6_1.3.x86_64.rpmLinux
Ecryptfs-utils-devel update (ELSA-2011-1241) ecryptfs-utils-devel-82-6.el6_1.3.x86_64.rpmLinux
Ecryptfs-utils-python update (ELSA-2011-1241) ecryptfs-utils-python-82-6.el6_1.3.x86_64.rpmLinux
Ecryptfs-utils update (ELSA-2011-1241) ecryptfs-utils-82-6.el6_1.3.i686.rpmLinux
Ecryptfs-utils-devel update (ELSA-2011-1241) ecryptfs-utils-devel-82-6.el6_1.3.i686.rpmLinux
Ecryptfs-utils-python update (ELSA-2011-1241) ecryptfs-utils-python-82-6.el6_1.3.i686.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234