CVE-2007-6328
Published: 13 December 2007
** DISPUTED ** DOSBox 0.72 and earlier allows local users to obtain access to the filesystem on the host operating system via the mount command. NOTE: the researcher reports a vendor response stating that this is not a security problem.
Notes
| Author | Note |
|---|---|
| jdstrand | dosbox is not intended to be used as a security sandbox, and the mount command (and others) function as designed |
| mdeslaur | disputed, let's ignore this |
Priority
Negligible
Status
| Package | Release | Status |
|---|---|---|
|
dosbox Launchpad, Ubuntu, Debian |
dapper |
Ignored
(reached end-of-life)
|
| edgy |
Needed
(reached end-of-life)
|
|
| feisty |
Needed
(reached end-of-life)
|
|
| gutsy |
Needed
(reached end-of-life)
|
|
| hardy |
Ignored
|
|
| intrepid |
Ignored
|
|
| jaunty |
Ignored
|
|
| karmic |
Ignored
|
|
| lucid |
Ignored
|
|
| upstream |
Needs triage
|