CVE-2010-0746

Fedora 11 and 12 - Local Privilege Escalation via DeviceKit-disks Label Path Traversal

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operating systems, allows local users to gain privileges via .. (dot dot) sequences in the label for a pluggable storage device.

References (5)

Core 5
Core References
Mailing List mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2010/q2/5
Various Sources x_refsource_confirm
https://bugs.freedesktop.org/show_bug.cgi?id=23235
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=523178

Scores

EPSS 0.0057
EPSS Percentile 43.1%

Details

CWE
CWE-22
Status published
Products (2)
fedoraproject/fedora 11
fedoraproject/fedora 12
Published Jan 13, 2014
Tracked Since Feb 18, 2026