[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-0788Date: (C)2010-03-02   (M)2023-12-22


ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.4
Exploit Score: 3.4
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
20100305
http://www.securityfocus.com/archive/1/509894/100/0/threaded
http://www.securityfocus.com/archive/1/509893/100/0/threaded
SECUNIA-38327
SECUNIA-38371
BID-38563
FEDORA-2010-1145
FEDORA-2010-1168
SUSE-SR:2010:012
SUSE-SR:2010:013
https://bugzilla.redhat.com/show_bug.cgi?id=532940
https://bugzilla.redhat.com/show_bug.cgi?id=558833

CWE    1
CWE-59
OVAL    15
oval:org.secpod.oval:def:700172
oval:org.secpod.oval:def:300154
oval:org.secpod.oval:def:101038
oval:org.secpod.oval:def:100741
...

© SecPod Technologies