CVE-2007-5964

Description

The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NFS server.

Affected packages (1)

• Debian/autofsfrom 0, < 3.1.4-8

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-5964