TrueCrypt 4.3, when installed setuid root, allows local users to cause a denial of service (filesystem unavailability) or gain privileges by mounting a crafted TrueCrypt volume, as demonstrated using (1) /usr/bin or (2) another user's home directory, a different issue than CVE-2007-1589.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
truecrypt foundation truecrypt 3.0 |
||
truecrypt foundation truecrypt 4.0 |
||
truecrypt foundation truecrypt 4.1 |
||
truecrypt foundation truecrypt 4.2 |
||
truecrypt foundation truecrypt 4.3 |