Showing 1 - 5 of 5

CVE-2013-4362

Status Candidate

Overview

WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in (1) kernel_interface.c and (2) mount_davfs.c, related to the "system" function.

Related Files

Gentoo Linux Security Advisory 201612-02: Posted Dec 2, 2016; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201612-2 - A vulnerability in DavFS2 allows local users to gain root privileges. Versions less than 1.5.2 are affected.; tags | advisory, local, root; systems | linux, gentoo; advisories | CVE-2013-4362; SHA-256 | d0568f03ffe49f3c81a6c0e574c71ad92049b22ec3a89222a80394850b94ea44; Download | Favorite | View

Debian Security Advisory 2765-2: Posted Jul 17, 2014; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2765-2 - The update released for davfs2 in DSA 2765 had a version number for Debian 7 "wheezy" that sorts lower than the version in Debian 6 "squeeze", causing problems on upgrades. This update makes a package of davfs2 in wheezy available which corrects only the version number.; tags | advisory; systems | linux, debian; advisories | CVE-2013-4362; SHA-256 | aa8bfc6ea9c15a1557ed96764c642823aafbff021291cfa52eff9a50cf97c2e6; Download | Favorite | View

davfs2 1.4.6 / 1.4.7 Privilege Escalation: Posted Oct 8, 2013; Authored by Lorenzo Cantoni; davfs2 versions 1.4.6 and 1.4.7 local privilege escalation exploit.; tags | exploit, local; advisories | CVE-2013-4362, OSVDB-97417; SHA-256 | 12792272e2f14c05cd5916d2f5ecf86ed1ff086e3ba5bf6686de4edea747c9fe; Download | Favorite | View

Mandriva Linux Security Advisory 2013-244: Posted Sep 30, 2013; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2013-244 - Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation. The updated packages have been patched to correct this issue.; tags | advisory, root; systems | linux, mandriva; advisories | CVE-2013-4362; SHA-256 | af7482beeb30b5336944896057c8df7f6c9b5cb4480241b35162b432c91c28d1; Download | Favorite | View

Debian Security Advisory 2765-1: Posted Sep 27, 2013; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2765-1 - Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation.; tags | advisory, root; systems | linux, debian; advisories | CVE-2013-4362; SHA-256 | 3903ec4ccc79432967878e89f87d6fdeefddcd86cea4d6f09148d0d4af7e6b8b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 297 files
Ubuntu 60 files
Gentoo 32 files
Debian 31 files
LiquidWorm 10 files
Apple 9 files
malvuln 6 files
Adam Gowdiak 4 files
nu11secur1ty 4 files
Ahmet Umit Bayram 4 files

File Archives

Systems

AIX (429)
Apple (2,087)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,042)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,499)
HPUX (880)
iOS (375)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,619)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,770)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,499)
UNIX (9,401)
UnixWare (187)
Windows (6,659)
Other

CVE-2013-4362

Overview

Related Files

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems