Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-2724
Description:The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-0547.
Test IDs: 1.3.6.1.4.1.25623.1.0.70119   1.3.6.1.4.1.25623.1.0.70118   1.3.6.1.4.1.25623.1.0.70152  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-2724
http://www.mandriva.com/security/advisories?name=MDVSA-2011:148
http://openwall.com/lists/oss-security/2011/07/29/9
RedHat Security Advisories: RHSA-2011:1220
http://www.redhat.com/support/errata/RHSA-2011-1220.html
RedHat Security Advisories: RHSA-2011:1221
http://www.redhat.com/support/errata/RHSA-2011-1221.html
http://www.securitytracker.com/id?1025984
http://secunia.com/advisories/45798




© 1998-2021 E-Soft Inc. All rights reserved.