Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1586

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2012-1586
Last Modified 28 Aug 2012 12:00:00
Published 27 Aug 2012 07:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-1586

Summary

mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.

Vulnerable Systems

Application

  • Debian Cifs-utils 2.6


References

CONFIRM - https://bugzilla.samba.org/show_bug.cgi?id=8821

MLIST - [oss-security] 20120327 Re: CVE id request: cifs-utils

MLIST - [oss-security] 20120327 CVE id request: cifs-utils

SUSE - SUSE-SU-2012:0575

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=665923

Related Patches

Novell SUSE 2012:6196 cifs-utils security update for SLE 11 SP2 i586

Novell SUSE 2012:6196 cifs-utils security update for SLE 11 SP2 x86_64

Novell SUSE 2012:6210 cifs-mount security update for SLE 11 SP1 i586

Novell SUSE 2012:6210 cifs-mount security update for SLE 11 SP1 x86_64


Last Updated: 27 May 2016 11:00:18