CVE-2007-5964

描述

The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NFS server.

受影響套件(1)

• Debian/autofsfrom 0, < 3.1.4-8

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-5964