CVE-2009-1072 vulnerability in VMware and Other Products
Published on March 25, 2009

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2009-1072

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2009-1072 are published in these products:

VMware Server

Canonical Ubuntu Linux

Debian Linux

Linux Kernel

OpenSuse

Suse Linux Enterprise Desktop

Suse Linux Enterprise Server

VMware Esx

Exploit Probability

EPSS

0.59%

Percentile

68.85%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2009-1072 vulnerability in VMware and Other ProductsPublished on March 25, 2009

Products Associated with CVE-2009-1072

Exploit Probability

CVE-2009-1072 vulnerability in VMware and Other Products
Published on March 25, 2009