FUSE 'fusermount' Race Condition Vulnerability

FUSE is prone to a race-condition vulnerability.

A local attacker can exploit this issue to cause a denial of service via symlink attacks involving FUSE shares belonging to privileged users.

NOTE: For an exploit to succeed, the attacker must be a member of the 'fuse' group.


 

Privacy Statement
Copyright 2010, SecurityFocus