SUSE CVE-2010-0788

ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the 1 ncpmount and 2 ncpumount programs...

SUSE CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

Mandriva Linux Security Advisory : ncpfs (MDVSA-2013:048)

Multiple vulnerabilities has been discovered and corrected in ncpfs : ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to...

Mandriva Linux Security Advisory : ncpfs (MDVSA-2012:084)

Multiple vulnerabilities has been discovered and corrected in ncpfs : ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to...

CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

CVE-2011-1679

ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small...

CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

CVE-2011-1680

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

CVE-2011-1680

CVE-2011-1680 concerns ncpmount in ncpfs 2.2.6 and earlier, where the /etc/mtab~ lock file is not removed after a failed attempt to add a mount entry. The entry notes unspecified impact and local attack vectors. Connected sources also indicate this issue is addressed alongside related CVEs (CVE-2...

Security fix for the ALT Linux 6 package ncpfs version 2.2.6-alt9

March 9, 2011 Dmitry V. Levin 2.2.6-alt9 - Imported fix of race conditions in ncpmount/ncpumount operations from Fedora fixes CVE-2009-3297...

CVE-2010-0296

The encodename macro in misc/mntentr.c in the GNU C Library aka glibc or libc6 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service mtab corruption, or possibly modify mount...

CVE-2010-0791

The 1 ncpmount, 2 ncpumount, and 3 ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service application failure via unspecified vectors that trigger the creation of a /etc/mtab file that persists after the program exits...

Code injection

The 1 ncpmount, 2 ncpumount, and 3 ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service application failure via unspecified vectors that trigger the creation of a /etc/mtab file that persists after the program exits...

CVE-2010-0791

The 1 ncpmount, 2 ncpumount, and 3 ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service application failure via unspecified vectors that trigger the creation of a /etc/mtab file that persists after the program exits...

Information disclosure

ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the 1 ncpmount and 2 ncpumount programs...