CVE-2009-1072
CVSS v2.0
4.9 (Medium)
EPSS
96.59 % (100th)
Affected Products
13
Advisories
2
nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.
Weaknesses
- CWE-16
- Configuration
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2009-03-25 01:30:00
(15 years ago) - Updated Date
-
2023-11-07 02:03:48
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
AND |
|
---|
Configuration #6
|
Configuration #7
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...