CVE-2011-0543

Published: Sep 2, 2011Modified: Apr 29, 2026

3.3

Vector

AV:L/AC:M/Au:N/C:N/I:P/A:P

Exploitability: 3.4 / Impact: 4.9

Source: NVD

Description

Certain legacy functionality in fusermount in fuse 2.8.5 and earlier, when util-linux does not support the --no-canonicalize option, allows local users to bypass intended access restrictions and unmount arbitrary directories via a symlink attack.

Affected (33)

Products: Fuse: Fuse

Fuse

1 product

Fuse

Configuration A

33 vulnerable

Vulnerable Software	Affected Versions
Fuse Fuse	Up to 2.8.5
Fuse Fuse	Version 1.9
Fuse Fuse	Version 2.0 pre0
Fuse Fuse	Version 2.0 pre1
Fuse Fuse	Version 2.1
Fuse Fuse	Version 2.2.1
Fuse Fuse	Version 2.2
Fuse Fuse	Version 2.3.0
Fuse Fuse	Version 2.3 pre
Fuse Fuse	Version 2.3 rc1
Fuse Fuse	Version 2.4.0
Fuse Fuse	Version 2.4.1
Fuse Fuse	Version 2.4.2
Fuse Fuse	Version 2.5.0
Fuse Fuse	Version 2.5.1
Fuse Fuse	Version 2.5.2
Fuse Fuse	Version 2.5.3
Fuse Fuse	Version 2.6.0
Fuse Fuse	Version 2.6.1
Fuse Fuse	Version 2.6.3
Fuse Fuse	Version 2.6.5
Fuse Fuse	Version 2.7.0
Fuse Fuse	Version 2.7.1
Fuse Fuse	Version 2.7.2
Fuse Fuse	Version 2.7.3
Fuse Fuse	Version 2.7.4
Fuse Fuse	Version 2.7.5
Fuse Fuse	Version 2.7.6
Fuse Fuse	Version 2.8.0
Fuse Fuse	Version 2.8.1
Fuse Fuse	Version 2.8.2
Fuse Fuse	Version 2.8.3
Fuse Fuse	Version 2.8.4