Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1864

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-1864
Last Modified 07 Mar 2011 09:34:27
Published 26 Apr 2006 02:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-1864

Summary

Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16 Rc7

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.3

  • Linux Kernel 2.6.16.4

  • Linux Kernel 2.6.16.7

  • Linux Kernel 2.6.16.8


References

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435

VUPEN - ADV-2006-4502

VUPEN - ADV-2006-2554

XF - kernel-smbfs-directory-traversal(26137)

CONFIRM - http://www.vmware.com/download/esx/esx-254-200610-patch.html

CONFIRM - http://www.vmware.com/download/esx/esx-213-200610-patch.html

CONFIRM - http://www.vmware.com/download/esx/esx-202-200610-patch.html

UBUNTU - USN-302-1

TRUSTIX - 2006-0026

BID - 17735

BUGTRAQ - 20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2

BUGTRAQ - 20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

BUGTRAQ - 20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2

BUGTRAQ - 20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

REDHAT - RHSA-2006:0710

REDHAT - RHSA-2006:0580

REDHAT - RHSA-2006:0579

REDHAT - RHSA-2006:0493

OSVDB - 25067

SUSE - SUSE-SA:2006:028

MANDRIVA - MDKSA-2006:151

MANDRIVA - MDKSA-2006:150

DEBIAN - DSA-1103

DEBIAN - DSA-1097

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm

SECUNIA - 23064

SECUNIA - 22875

SECUNIA - 22497

SECUNIA - 21745

SECUNIA - 21614

SECUNIA - 21476

SECUNIA - 21035

SECUNIA - 20914

SECUNIA - 20716

SECUNIA - 20671

SECUNIA - 20398

SECUNIA - 20237

SECUNIA - 19869


Last Updated: 27 May 2016 10:42:14