Privilege Escalation via Crafted LIBMOUNT_MTAB Environment Variable

Privilege Escalation via Crafted LIBMOUNT_MTAB Environment Variable

CVE-2015-3202 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mount's debugging feature.

Learn more about our Cis Benchmark Audit For Ibm I.