Main Vulnerability Database Exploits ID:7888 - Exploit for Improper Privilege Management in Linux kernel - CVE-2016-2853

ID:7888 - Exploit for Improper Privilege Management in Linux kernel - CVE-2016-2853

Published: May 25, 2022

Vulnerability identifier: #VU63649

Vulnerability risk: Low

CVE-ID: CVE-2016-2853

CWE-ID: CWE-269

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/41761/

Vulnerability description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper restriction of the mount namespace. A local user can mount an aufs filesystem on top of a FUSE filesystem, and then execute a crafted setuid program to escalate privileges.

Remediation

Install updates from vendor's website.

ID:7888 - Exploit for Improper Privilege Management in Linux kernel - CVE-2016-2853

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human