844 B
844 B
CVE-2010-3879
Description
FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink attack on the parent directory of the mountpoint of a FUSE filesystem, a different vulnerability than CVE-2010-0789.
POC
Reference
- http://www.halfdog.net/Security/FuseTimerace/
- https://bugs.launchpad.net/bugs/670622
- https://bugzilla.redhat.com/show_bug.cgi?id=651183
Github
No PoCs found on GitHub currently.