Shodan
Vulnerabilities
Vulnerable Software
Ecryptfs:  >> Ecryptfs Utils  Security Vulnerabilities
CVE-2011-1831
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call.
CVSS Score
4.6
EPSS Score
0.0
Published
2014-02-15
CVE-2011-1832
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call.
CVSS Score
2.1
EPSS Score
0.0
Published
2014-02-15
CVE-2011-1834
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call.
CVSS Score
2.1
EPSS Score
0.001
Published
2014-02-15
CVE-2011-1835
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps.
CVSS Score
4.4
EPSS Score
0.001
Published
2014-02-15
CVE-2011-1836
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.
CVSS Score
4.6
EPSS Score
0.0
Published
2014-02-15
CVE-2011-1837
The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
CVSS Score
3.6
EPSS Score
0.001
Published
2014-02-15
CVE-2008-5188
The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process.
CVSS Score
7.2
EPSS Score
0.0
Published
2008-11-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved