Published: 25/11/2014 Updated: 08/12/2016
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

Affected Products

Vendor Product Versions
CanonicalUbuntu Linux14.10

Vendor Advisories

mountall could mount certain filesystems with the wrong permissions ...