Showing 1 - 5 of 5

CVE-2013-4362

Status Candidate

Overview

WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in (1) kernel_interface.c and (2) mount_davfs.c, related to the "system" function.

Related Files

Gentoo Linux Security Advisory 201612-02: Posted Dec 2, 2016; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201612-2 - A vulnerability in DavFS2 allows local users to gain root privileges. Versions less than 1.5.2 are affected.; tags | advisory, local, root; systems | linux, gentoo; advisories | CVE-2013-4362; SHA-256 | d0568f03ffe49f3c81a6c0e574c71ad92049b22ec3a89222a80394850b94ea44; Download | Favorite | View

Debian Security Advisory 2765-2: Posted Jul 17, 2014; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2765-2 - The update released for davfs2 in DSA 2765 had a version number for Debian 7 "wheezy" that sorts lower than the version in Debian 6 "squeeze", causing problems on upgrades. This update makes a package of davfs2 in wheezy available which corrects only the version number.; tags | advisory; systems | linux, debian; advisories | CVE-2013-4362; SHA-256 | aa8bfc6ea9c15a1557ed96764c642823aafbff021291cfa52eff9a50cf97c2e6; Download | Favorite | View

davfs2 1.4.6 / 1.4.7 Privilege Escalation: Posted Oct 8, 2013; Authored by Lorenzo Cantoni; davfs2 versions 1.4.6 and 1.4.7 local privilege escalation exploit.; tags | exploit, local; advisories | CVE-2013-4362, OSVDB-97417; SHA-256 | 12792272e2f14c05cd5916d2f5ecf86ed1ff086e3ba5bf6686de4edea747c9fe; Download | Favorite | View

Mandriva Linux Security Advisory 2013-244: Posted Sep 30, 2013; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2013-244 - Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation. The updated packages have been patched to correct this issue.; tags | advisory, root; systems | linux, mandriva; advisories | CVE-2013-4362; SHA-256 | af7482beeb30b5336944896057c8df7f6c9b5cb4480241b35162b432c91c28d1; Download | Favorite | View

Debian Security Advisory 2765-1: Posted Sep 27, 2013; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2765-1 - Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation.; tags | advisory, root; systems | linux, debian; advisories | CVE-2013-4362; SHA-256 | 3903ec4ccc79432967878e89f87d6fdeefddcd86cea4d6f09148d0d4af7e6b8b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 212 files
Ubuntu 60 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 10 files
nu11secur1ty 7 files
Milad Karimi 6 files
Google Security Research 6 files
Jann Horn 4 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,024)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,363)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,594)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,472)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2013-4362

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems