The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, allowing local users to bypass CIFS share authentication by leveraging a mount of a share by a different user
Reporter | Title | Published | Views | Family All 95 |
---|---|---|---|---|
seebug.org | Linux kernel 2.6.x CIFS本地安全限制绕过漏洞 | 22 Nov 201100:00 | – | seebug |
seebug.org | Linux Kernel CIFS本地安全限制绕过漏洞 | 22 Nov 201100:00 | – | seebug |
Veracode | Authentication Bypass | 10 Apr 202001:05 | – | veracode |
Cvelist | CVE-2011-1585 | 8 Jun 201310:00 | – | cvelist |
NVD | CVE-2011-1585 | 8 Jun 201313:05 | – | nvd |
Prion | Design/Logic Flaw | 8 Jun 201313:05 | – | prion |
UbuntuCve | CVE-2011-1585 | 6 Oct 201100:00 | – | ubuntucve |
OpenVAS | Ubuntu Update for linux-ti-omap4 USN-1280-1 | 25 Nov 201100:00 | – | openvas |
OpenVAS | Ubuntu: Security Advisory (USN-1280-1) | 25 Nov 201100:00 | – | openvas |
OpenVAS | Ubuntu Update for linux-fsl-imx51 USN-1271-1 | 25 Nov 201100:00 | – | openvas |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo