CVE-2010-0789

fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint.
Link Following
Severity
UNKNOWN
AV:L/AC:M/Au:N/C:N/I:P/A:P
Atk. Vector
LOCAL
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
VendorProductVersion
fusefuse
1.9
fusefuse
2.0
fusefuse
2.0
fusefuse
2.1
fusefuse
2.2
fusefuse
2.2.1
fusefuse
2.3
fusefuse
2.3
fusefuse
2.3.0
fusefuse
2.4.0
fusefuse
2.4.1
fusefuse
2.4.2
fusefuse
2.5.0
fusefuse
2.5.1
fusefuse
2.5.2
fusefuse
2.5.3
fusefuse
2.6.0
fusefuse
2.6.1
fusefuse
2.6.3
fusefuse
2.6.5
fusefuse
2.7.0
fusefuse
2.7.1
fusefuse
2.7.2
fusefuse
2.7.3
fusefuse
2.7.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
fuse
bullseye
2.9.9-5
fixed
bookworm
2.9.9-6
fixed
sid
2.9.9-9
fixed
trixie
2.9.9-9
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
fuse
karmic
Fixed 2.7.4-1.1ubuntu4.3
released
jaunty
Fixed 2.7.4-1.1ubuntu4.0.9.04.1
released
intrepid
Fixed 2.7.3-4ubuntu2.1
released
hardy
Fixed 2.7.2-1ubuntu2.1
released
dapper
Fixed 2.4.2-0ubuntu3.1
released