<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
 <HEAD>
   <TITLE> [Full-disclosure] fusermount: Unmount any filesystem
   </TITLE>
   <LINK REL="Index" HREF="index.html" >
   <LINK REL="made" HREF="mailto:full-disclosure%40lists.grok.org.uk?Subject=%5BFull-disclosure%5D%20fusermount%3A%20Unmount%20any%20filesystem&In-Reply-To=">
   <META NAME="robots" CONTENT="ALL">
   <META NAME="author" CONTENT="lists.grok.org.uk / halfdog">
   <META NAME="description" CONTENT="[Full-disclosure] fusermount: Unmount any filesystem">
   <META NAME="keywords" CONTENT="halfdog, [Full-disclosure] fusermount: Unmount any filesystem, full disclosure, lists.grok.org.uk">
   <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
   <LINK REL="Previous"  HREF="077246.html">
   <LINK REL="Next"  HREF="077248.html">
 </HEAD>
 <BODY BGCOLOR="#ffffff">
   <H1>[Full-disclosure] fusermount: Unmount any filesystem</H1>
    <B>halfdog</B> 
    <A HREF="mailto:full-disclosure%40lists.grok.org.uk?Subject=%5BFull-disclosure%5D%20fusermount%3A%20Unmount%20any%20filesystem&In-Reply-To="
       TITLE="[Full-disclosure] fusermount: Unmount any filesystem">me at halfdog.net
       </A><BR>
    <I>Tue Nov  2 17:44:11 GMT 2010</I>
    <P><UL>
        <LI>Previous message: <A HREF="077246.html">[Full-disclosure] [ANN] New version of w3af is available for        download !
</A></li>
        <LI>Next message: <A HREF="077248.html">[Full-disclosure] [Onapsis Security Advisory 2010-008] Oracle Virtual Server Agent Arbitrary File Access
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#77247">[ date ]</a>
              <a href="thread.html#77247">[ thread ]</a>
              <a href="subject.html#77247">[ subject ]</a>
              <a href="author.html#77247">[ author ]</a>
         </LI>
       </UL>
    <HR>  
<!--beginarticle-->
<PRE>-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello List,

To evaluate the pros and cons of various disclosure methods, I'm trying
full disclosure this time:

At least on ubuntu lucid, the fusermount tool contains a timerace
mounting a user filesystem and updating mtab, thus mtab entries with
arbitrary path can be created. Crafted mtab entries can then be used to
unmount live parts of the filesystem.

<A HREF="http://www.halfdog.net/Security/FuseTimerace/">http://www.halfdog.net/Security/FuseTimerace/</A>

- -- 
<A HREF="http://www.halfdog.net/">http://www.halfdog.net/</A>
PGP: 156A AE98 B91F 0114 FE88  2BD8 C459 9386 feed a bee
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFM0E3rxFmThv7tq+4RAmavAJ9JNdwF6R0gv1FlIZ3to1QrkQs90wCgkUvA
IpD9Wfe/viLLIMLEfE1B2yo=
=tFrk
-----END PGP SIGNATURE-----

</PRE>


<!--endarticle-->
    <HR>
    <P><UL>
        <!--threads-->
        <LI>Previous message: <A HREF="077246.html">[Full-disclosure] [ANN] New version of w3af is available for        download !
</A></li>
        <LI>Next message: <A HREF="077248.html">[Full-disclosure] [Onapsis Security Advisory 2010-008] Oracle Virtual Server Agent Arbitrary File Access
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#77247">[ date ]</a>
              <a href="thread.html#77247">[ thread ]</a>
              <a href="subject.html#77247">[ subject ]</a>
              <a href="author.html#77247">[ author ]</a>
         </LI>
       </UL>

<hr>
<a href="https://lists.grok.org.uk/mailman/listinfo/full-disclosure">Full-Disclosure</a> is hosted and sponsored by <a href="http://secunia.com/">Secunia</a>.<br>
</body></html>