[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-2724Date: (C)2011-09-06   (M)2023-12-22


The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-0547.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 1.2
Exploit Score: 1.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: HIGH
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1025984
SECUNIA-45798
MDVSA-2011:148
RHSA-2011:1220
RHSA-2011:1221
http://openwall.com/lists/oss-security/2011/07/29/9
http://comments.gmane.org/gmane.linux.kernel.cifs/3827
http://git.samba.org/?p=cifs-utils.git%3Ba=commit%3Bh=1e7a32924b22d1f786b6f490ce8590656f578f91
https://bugzilla.redhat.com/show_bug.cgi?id=726691

CPE    192
cpe:/a:samba:samba:3.0.21a
cpe:/a:samba:samba:2.2.6
cpe:/a:samba:samba:2.2.7
cpe:/a:samba:samba:2.2.8
...
CWE    1
CWE-20
OVAL    8
oval:org.secpod.oval:def:201583
oval:org.secpod.oval:def:102834
oval:org.secpod.oval:def:201620
oval:org.secpod.oval:def:102769
...

© SecPod Technologies