Linux · Autofs · CVE-2007-5964
**Name of the Vulnerable Software and Affected Versions**
autofs 5
**Description**
The default configuration of autofs 5 in some Linux distributions omits the nosuid option for the hosts (/net filesystem) map. This omission allows local users to gain privileges via a setuid program on a remote NFS server.
**Recommendations**
For autofs 5, add the nosuid option to the hosts (/net filesystem) map to prevent local users from gaining privileges via a setuid program on a remote NFS server.