05/10/1995

CVE-1999-1080

rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and running volcheck, when the file systems do not have the nosuid option specified in rmmount.conf.
Attack vector:  Local
Product:  sun: sunos
References: 

• http://marc.info/?l=bugtraq&m=92633694100270&w=2
• http://marc.info/?l=bugtraq&m=93971288323395&w=2
• http://www.securityfocus.com/bid/250
• https://exchange.xforce.ibmcloud.com/vulnerabilities/8350

Severity:  High
CVSS Score:  7.2
CVSS Vector:  (AV:L/AC:L/Au:N/C:C/I:C/A:C)