CVE-2009-0115

by Fred · 30/03/2009

The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.

Date published : 2009-03-30

http://download.opensuse.org/update/10.3-test/repodata/patch-kpartx-6082.xml

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691

CVE-2009-0115

Similar

Recent Posts

Categories

CVE-2009-0115

Share this:

Similar

Recent Posts

Categories

Tags