fusermount in FUSE before 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain special characters.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| miklos_szeredi | fuse | 2.3_rc1 |
| miklos_szeredi | fuse | 2.3.0 |
| miklos_szeredi | fuse | 2.2.1 |
| miklos_szeredi | fuse | 2.2 |
| miklos_szeredi | fuse | 2.4.0 |