Privilege Escalation in NTFS-3G: Unsanitized Environment Variable Execution

Privilege Escalation in NTFS-3G: Unsanitized Environment Variable Execution

CVE-2017-0358 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.

Learn more about our User Device Pen Test.