Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1680

Overview

Vulnerability Score 4.4 4.4
CVE Id CVE-2011-1680
Last Modified 20 Apr 2011 10:33:53
Published 09 Apr 2011 10:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1680

Summary

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.

Vulnerable Systems

Application

  • Ncpfs 2.2.1

  • Ncpfs 2.2.2

  • Ncpfs 2.2.3

  • Ncpfs 2.2.4

  • Ncpfs 2.2.5

  • Ncpfs 2.2.6


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=688980

XF - ncpfs-mtab-unspecified(66700)

MLIST - [oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

MLIST - [oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE

Related Patches

Novell SUSE 2011:7711 ncpfs security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:56:24