CVE-2006-5871

medium

Description

smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.

References

http://secunia.com/advisories/23361

http://secunia.com/advisories/23370

http://secunia.com/advisories/23395

http://secunia.com/advisories/25683

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10171

http://www.debian.org/security/2006/dsa-1233

http://www.novell.com/linux/security/advisories/2007_35_kernel.html

http://www.us.debian.org/security/2006/dsa-1237

Details

Published: 2006-12-11

Risk Information

CVSS v2

Base Score: 4.1

Vector: CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

Detections

Analytics