ID CVE-2007-2074
Summary Certain programs in containers in ScramDisk 4 Linux before 1.0-1 execute with SUID permissions, which allows local users to gain privileges via mounted containers.
References
Vulnerable Configurations
  • cpe:2.3:a:scramdisk_4_linux:scramdisk_4_linux:*:*:*:*:*:*:*:*
    cpe:2.3:a:scramdisk_4_linux:scramdisk_4_linux:*:*:*:*:*:*:*:*
CVSS
Base: 4.6 (as of 29-07-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 23495
confirm http://sourceforge.net/tracker/index.php?func=detail&aid=1696777&group_id=101952&atid=630783
osvdb 34965
secunia 24903
vupen ADV-2007-1418
xf scramdisk-mount-privilege-escalation(33674)
Last major update 29-07-2017 - 01:31
Published 18-04-2007 - 03:19
Last modified 29-07-2017 - 01:31
Back to Top