What is the severity of CVE-2010-0789?

CVE-2010-0789 has been assigned a medium severity due to the potential for local users to unmount arbitrary FUSE filesystem shares.

How do I fix CVE-2010-0789?

To fix CVE-2010-0789, upgrade to FUSE version 2.7.5 or later, or 2.8.2 or later, as these versions contain the necessary security fixes.

Who is affected by CVE-2010-0789?

CVE-2010-0789 affects local users on systems running vulnerable versions of FUSE prior to 2.7.5 and 2.8.2.

What is the nature of the attack related to CVE-2010-0789?

The attack involves a symlink manipulation to unmount a FUSE filesystem by exploiting the file permission handling in fusermount.

Are there any workarounds for CVE-2010-0789?

A possible workaround for CVE-2010-0789 is to restrict access permissions for local users to sensitive filesystems until the software is patched.

Vulnerability/
CVE-2010-0789

low

3.3

CWE

2/3/2010

7/8/2024

CVE-2010-0789

First published: Tue Mar 02 2010(Updated: )

fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Fuse	=2.4.2
Fuse	=2.6.0
Fuse	=2.4.1
Fuse	=2.2
Fuse	=2.6.5
Fuse	=2.7.0
Fuse	=2.7.4
Fuse	=2.3.0
Fuse	=2.4.0
Fuse	=2.6.3
Fuse	=2.5.3
Fuse	=2.3-pre
Fuse	=2.0-pre1
Fuse	=2.2.1
Fuse	=2.5.1
Fuse	=2.7.1
Fuse	=2.7.2
Fuse	=2.1
Fuse	=2.5.2
Fuse	=1.9
Fuse	=2.5.0
Fuse	=2.6.1
Fuse	=2.0-pre0
Fuse	=2.7.3
Fuse	=2.3-rc1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0789?
CVE-2010-0789 has been assigned a medium severity due to the potential for local users to unmount arbitrary FUSE filesystem shares.
How do I fix CVE-2010-0789?
To fix CVE-2010-0789, upgrade to FUSE version 2.7.5 or later, or 2.8.2 or later, as these versions contain the necessary security fixes.
Who is affected by CVE-2010-0789?
CVE-2010-0789 affects local users on systems running vulnerable versions of FUSE prior to 2.7.5 and 2.8.2.
What is the nature of the attack related to CVE-2010-0789?
The attack involves a symlink manipulation to unmount a FUSE filesystem by exploiting the file permission handling in fusermount.
Are there any workarounds for CVE-2010-0789?
A possible workaround for CVE-2010-0789 is to restrict access permissions for local users to sensitive filesystems until the software is patched.

agent/type
agent/remedy
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/severity
agent/weakness
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/fuse
canonical/fuse
version/fuse/2.4.2
version/fuse/2.6.0
version/fuse/2.4.1
version/fuse/2.2
version/fuse/2.6.5
version/fuse/2.7.0
version/fuse/2.7.4
version/fuse/2.3.0
version/fuse/2.4.0
version/fuse/2.6.3
version/fuse/2.5.3
version/fuse/2.3-pre
version/fuse/2.0-pre1
version/fuse/2.2.1
version/fuse/2.5.1
version/fuse/2.7.1
version/fuse/2.7.2
version/fuse/2.1
version/fuse/2.5.2
version/fuse/1.9
version/fuse/2.5.0
version/fuse/2.6.1
version/fuse/2.0-pre0
version/fuse/2.7.3
version/fuse/2.3-rc1

Frequently Asked Questions

What is the severity of CVE-2010-0789?
CVE-2010-0789 has been assigned a medium severity due to the potential for local users to unmount arbitrary FUSE filesystem shares.
How do I fix CVE-2010-0789?
To fix CVE-2010-0789, upgrade to FUSE version 2.7.5 or later, or 2.8.2 or later, as these versions contain the necessary security fixes.
Who is affected by CVE-2010-0789?
CVE-2010-0789 affects local users on systems running vulnerable versions of FUSE prior to 2.7.5 and 2.8.2.
What is the nature of the attack related to CVE-2010-0789?
The attack involves a symlink manipulation to unmount a FUSE filesystem by exploiting the file permission handling in fusermount.
Are there any workarounds for CVE-2010-0789?
A possible workaround for CVE-2010-0789 is to restrict access permissions for local users to sensitive filesystems until the software is patched.

CVE-2010-0789

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0789?

How do I fix CVE-2010-0789?

Who is affected by CVE-2010-0789?

What is the nature of the attack related to CVE-2010-0789?

Are there any workarounds for CVE-2010-0789?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-0789?

How do I fix CVE-2010-0789?

Who is affected by CVE-2010-0789?

What is the nature of the attack related to CVE-2010-0789?

Are there any workarounds for CVE-2010-0789?