CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
5.1%
A flaw was found in the way udisks and udisks2 handled long path names. A malicious, local user could use this flaw to create a specially-crafted directory structure that could lead to arbitrary code execution with the privileges of the udisks daemon (root) (CVE-2014-0004).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | udisks | <Β 1.0.4-10.1 | udisks-1.0.4-10.1.mga3 |
Mageia | 3 | noarch | udisks2 | <Β 2.0.1-2.1 | udisks2-2.0.1-2.1.mga3 |
Mageia | 4 | noarch | udisks | <Β 1.0.4-11.1 | udisks-1.0.4-11.1.mga4 |
Mageia | 4 | noarch | udisks2 | <Β 2.1.1-2.1 | udisks2-2.1.1-2.1.mga4 |