Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-1585
HistoryJun 08, 2013 - 1:05 p.m.

CVE-2011-1585

2013-06-0813:05:00
CWE-264
[email protected]
web.nvd.nist.gov
57
cve-2011-1585
cifs_find_smb_ses
fs/cifs/connect.c
linux kernel
authentication bypass
nvd

7.2 High

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.

Related

prion 1
seebug 2
veracode 1
ubuntucve 1
nessus 29
openvas 26
ubuntu 10
securityvulns 3
oraclelinux 2
suse 10
redhat 3
centos 1
osv 1
debian 1
prion
prion
Design/Logic Flaw
2013-06-08 13:05:00
seebug
seebug
Linux kernel 2.6.x CIFS本地安全限制绕过漏洞
2011-11-22 00:00:00
Linux Kernel CIFS本地安全限制绕过漏洞
2011-11-22 00:00:00
veracode
veracode
Authentication Bypass
2020-04-10 01:05:05
ubuntucve
ubuntucve
CVE-2011-1585
2011-10-06 00:00:00
nessus
nessus
USN-1280-1 : linux-ti-omap4 vulnerabilities
2011-11-26 00:00:00
USN-1271-1 : linux-fsl-imx51 vulnerabilities
2011-11-22 00:00:00
Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1278-1)
2011-11-26 00:00:00
openvas
openvas
Ubuntu Update for linux-ti-omap4 USN-1280-1
2011-11-25 00:00:00
Ubuntu: Security Advisory (USN-1280-1)
2011-11-25 00:00:00
Ubuntu Update for linux-fsl-imx51 USN-1271-1
2011-11-25 00:00:00
ubuntu
ubuntu
Linux (OMAP4) vulnerabilities
2011-11-24 00:00:00
Linux kernel (FSL-IMX51) vulnerabilities
2011-11-21 00:00:00
Linux (Maverick backport) vulnerabilities
2011-11-24 00:00:00
securityvulns
securityvulns
[USN-1268-1] Linux kernel vulnerabilities
2011-11-27 00:00:00
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-26 00:00:00
Linux kernel security vulnerabilities
2011-05-26 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security and bug fix update
2011-12-14 00:00:00
kernel security, bug fix, and enhancement update
2011-10-21 00:00:00
suse
suse
remote denial of service in kernel
2011-09-20 17:41:52
Security update for the Linux kernel (important)
2011-09-21 00:08:35
remote denial of service, potential local in kernel
2011-08-12 14:12:39
redhat
redhat
(RHSA-2011:1386) Important: kernel security, bug fix, and enhancement update
2011-10-20 00:00:00
(RHSA-2011:1408) Moderate: rhev-hypervisor security update
2011-10-26 00:00:00
(RHSA-2011:1253) Important: kernel-rt security and bug fix update
2011-09-12 00:00:00
centos
centos
kernel security update
2011-10-21 00:31:03
osv
osv
linux-2.6 - several issues
2011-05-24 00:00:00
debian
debian
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-25 05:22:29

7.2 High

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for CVE-2011-1585
prion1seebug2veracode1ubuntucve1nessus29openvas26ubuntu10securityvulns3oraclelinux2suse10redhat3centos1osv1debian1