Lucene search

K

PRIOn knowledge basePRION:CVE-2010-0547

HistoryFeb 04, 2010 - 8:15 p.m.

Path traversal

2010-02-0420:15:00

PRIOn knowledge base

www.prio-n.com

7

6.3 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

23.0%

client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string.

CPENameOperatorVersion
sambaeq3.0.1497
sambaeq2.2.197
sambaeq3.0.27
sambaeq3.0.31
sambaeq3.0.3
sambaeq2.2.12
sambaeq3.0.8
sambaeq3.2.15
sambaeq3.3.3
sambaeq3.0.29

Rows per page:

1-10 of 1231

References

lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/39317

security.gentoo.org/glsa/glsa-201206-29.xml

www.mandriva.com/security/advisories?name=MDVSA-2010:090

www.securityfocus.com/bid/38326

www.vupen.com/english/advisories/2010/1062

git.samba.org/?p=samba.git%3Ba=commit%3Bh=a065c177dfc8f968775593ba00dffafeebb2e054

6.3 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

23.0%

Related for PRION:CVE-2010-0547

veracode2 debiancve2 cve2 ubuntucve2 seebug1 nessus27 openvas41 prion1 gentoo1 debian1 fedora3 osv1 redhat3 centos2 oraclelinux2 vmware2