Lucene search

K
cveMitreCVE-2006-5871
HistoryDec 11, 2006 - 11:28 p.m.

CVE-2006-5871

2006-12-1123:28:00
mitre
web.nvd.nist.gov
40
cve-2006-5871
smbfs
linux kernel
unix extensions
security bypass
nvd

CVSS2

4.1

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

30.4%

smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.

Affected configurations

Nvd
Node
linuxlinux_kernelMatch2.4.33
OR
linuxlinux_kernelMatch2.6.8
VendorProductVersionCPE
linuxlinux_kernel2.6.8cpe:/o:linux:linux_kernel:2.6.8:::
linuxlinux_kernel2.4.33cpe:/o:linux:linux_kernel:2.4.33:::

CVSS2

4.1

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

30.4%