Main Vulnerability Database Exploits ID:4584 - Exploit for Permissions, Privileges, and Access Controls in davfs2 - CVE-2013-4362

ID:4584 - Exploit for Permissions, Privileges, and Access Controls in davfs2 - CVE-2013-4362

Published: September 11, 2020

Vulnerability identifier: #VU42514

Vulnerability risk: High

CVE-ID: CVE-2013-4362

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
davfs2

Link to public exploit:

https://github.com/notclement/Automatic-davfs2-1.4.6-1.4.7-Local-Privilege-Escalation

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in (1) kernel_interface.c and (2) mount_davfs.c, related to the "system" function.

Remediation

Install update from vendor's website.

ID:4584 - Exploit for Permissions, Privileges, and Access Controls in davfs2 - CVE-2013-4362

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human