Privilege Escalation via Insecure Mountpoint Permissions in ecryptfs-utils

Privilege Escalation via Insecure Mountpoint Permissions in ecryptfs-utils

CVE-2011-1831 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.

Learn more about our User Device Pen Test.