Linux fusermount Environment Variable Privilege Escalation Exploit

The 'fusermount' binary, part of the FUSE system in Linux, executes the /bin/mount binary with ruid set to 0 without clearing the environment variables provided by unprivileged users. This flaw can be leveraged by local unprivileged users to gain root privileges by leveraging the functionality provided by the LIBMOUNT_MTAB environment variable to overwrite an arbitrary file on the affected system.
Exploit type: 
Vulnerabilty ID: 
Product Version: 
Released Date: 
Wednesday, November 11, 2015 - 00:00