| Vulnerability Name: | CVE-2007-6285 (CCN-39188) | ||||||||||||||||||||
| Assigned: | 2007-12-20 | ||||||||||||||||||||
| Published: | 2007-12-20 | ||||||||||||||||||||
| Updated: | 2017-09-29 | ||||||||||||||||||||
| Summary: | The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 4 and 5, does not specify the nodev mount option for the -hosts map, which allows local users to access "important devices" by operating a remote NFS server and creating special device files on that server, as demonstrated by the /dev/mem device. | ||||||||||||||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||||||||||||||
| CVSS v2 Severity: | 6.2 Medium (CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C) 4.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
1.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-16 | ||||||||||||||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2007-6285 Source: OSVDB Type: UNKNOWN 40442 Source: CCN Type: RHSA-2007-1176 Important: autofs security update Source: REDHAT Type: UNKNOWN RHSA-2007:1176 Source: CCN Type: RHSA-2007-1177 Important: autofs5 security update Source: REDHAT Type: UNKNOWN RHSA-2007:1177 Source: CCN Type: SA28156 Red Hat autofs "nodev" Security Bypass Vulnerability Source: SECUNIA Type: Vendor Advisory 28156 Source: SECUNIA Type: Vendor Advisory 28168 Source: SECUNIA Type: Vendor Advisory 28456 Source: CCN Type: SECTRACK ID: 1019137 autofs Lets Local Users Gain Elevated Privileges Source: SECTRACK Type: UNKNOWN 1019137 Source: CCN Type: ASA-2008-009 autofs5 security update (RHSA-2007-1177) Source: MANDRIVA Type: UNKNOWN MDVSA-2008:009 Source: CCN Type: OSVDB ID: 40442 Red Hat Enterprise Linux autofs5 nodev Local Restriction Bypass Source: BID Type: UNKNOWN 26970 Source: CCN Type: BID-26970 autofs nodev Mount Option Privilege Escalation Vulnerability Source: CCN Type: Red Hat Bugzilla Bug 426218 CVE-2007-6285 autofs default doesn't set nodev in /net Source: MISC Type: UNKNOWN https://bugzilla.redhat.com/show_bug.cgi?id=426218 Source: XF Type: UNKNOWN autofs-hostsmap-weak-security(39188) Source: XF Type: UNKNOWN autofs-hostsmap-weak-securtiy(39188) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:11457 Source: FEDORA Type: UNKNOWN FEDORA-2007-4707 Source: FEDORA Type: UNKNOWN FEDORA-2007-4709 | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: Configuration RedHat 6: Configuration RedHat 7: Configuration RedHat 8: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||