Ecryptfs: Security Vulnerabilities
The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
CVSS Score
3.6
EPSS Score
0.001
Published
2014-02-15
The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process.
CVSS Score
7.2
EPSS Score
0.0
Published
2008-11-21
Page 2