Vulnerabilities > CVE-2004-2610 - Unspecified vulnerability in Stefan Bambach Mntd

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

stefan-bambach

NVD

Published: 2004-12-31

Updated: 2024-11-20

Summary

mntd_mount.c in mntd before 0.4.2 might allow local users to gain privileges via shell metacharacters in a remount option in the configuration file. NOTE: It is not clear whether this is a vulnerability because there is not necessarily any common usage in which privilege boundaries are crossed. Typical usage would restrict write access to the configuration file.

Vulnerable Configurations

Part	Description	Count
Application	Stefan_Bambach Stefan Bambach Mntd 0.3.4 Stefan Bambach Mntd 0.4.0 Stefan Bambach Mntd 0.4.1 Stefan Bambach Mntd 0.3.5	4

References

http://prdownloads.sourceforge.net/mntd/mntd-0.4.2.tar.gz?download
http://prdownloads.sourceforge.net/mntd/mntd-0.4.2.tar.gz?download
http://securitytracker.com/id?1011088
http://securitytracker.com/id?1011088
http://www.osvdb.org/9380
http://www.osvdb.org/9380
https://exchange.xforce.ibmcloud.com/vulnerabilities/17149
https://exchange.xforce.ibmcloud.com/vulnerabilities/17149