Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Sun, 27 May 2012 22:43:16 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1638967919&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0809-advisories%2FFreeBSD-SA-08-08.nmount.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1638967919.1338158596.1338158596.1338158596.1%3B%2B__utmz%3D32867617.1338158596.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/69618/FreeBSD-SA-08-08.nmount.txt http://packetstormsecurity.org/files/69618/FreeBSD-SA-08-08.nmount.txt http://packetstormsecurity.org/files/69618/FreeBSD-SA-08-08.nmount.txt.html Thu, 04 Sep 2008 02:46:31 GMT FreeBSD Security Advisory - Various user defined input such as mount points, devices, and mount options are prepared and passed as arguments to nmount(2) into the kernel. Under certain error conditions, user defined data will be copied into a stack allocated buffer stored in the kernel without sufficient bounds checking. If the system is configured to allow unprivileged users to mount file systems, it is possible for a local adversary to exploit this vulnerability and execute code in the context of the kernel.