CVE-2011-4126 Information
Jun 07, 2022
cve
Description
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged users the ability to mount any device to anywhere.
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://lwn.net/Articles/464824/ https://bugs.launchpad.net/calibre/+bug/885027 https://www.openwall.com/lists/oss-security/2011/11/02/2 https://git.zx2c4.com/calibre-mount-helper-exploit/about/
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
8.1
Share on: