Improper Umask Handling in mountall 1.54 Allows Local Users to Bypass Access Restrictions

Improper Umask Handling in mountall 1.54 Allows Local Users to Bypass Access Restrictions

CVE-2014-1421 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.