#VU42167 Path traversal in Fedora - CVE-2010-0746

Cybersecurity Help s.r.o.

Published: 2014-01-13 | Updated: 2020-08-10

Vulnerability identifier: #VU42167

Vulnerability risk: Medium

CVSSv4.0: 4.8 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2010-0746

CWE-ID: CWE-22

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Fedora
Operating systems & Components / Operating system

Vendor: Fedoraproject

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operating systems,. A remote authenticated attacker can send a specially crafted HTTP request and local users to gain privileges via . (dot dot) sequences in the label for a pluggable storage device.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

Fedora: 11 - 12

External links
https://seclists.org/oss-sec/2010/q2/5
https://stealth.openwall.net/xSports/devshit.pl
https://xorl.wordpress.com/2010/04/06/cve-2010-0746-devicekit-local-privilege-escalation/
https://bugs.freedesktop.org/show_bug.cgi?id=23235
https://bugzilla.redhat.com/show_bug.cgi?id=523178

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Path traversal in Fedoraproject Fedora