4.6

CVE-2006-1864

Exploit
Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.16
LinuxLinux Kernel Version2.6.16 Updaterc1
LinuxLinux Kernel Version2.6.16 Updaterc2
LinuxLinux Kernel Version2.6.16 Updaterc3
LinuxLinux Kernel Version2.6.16 Updaterc4
LinuxLinux Kernel Version2.6.16 Updaterc5
LinuxLinux Kernel Version2.6.16 Updaterc6
LinuxLinux Kernel Version2.6.16.1
LinuxLinux Kernel Version2.6.16.2
LinuxLinux Kernel Version2.6.16.3
LinuxLinux Kernel Version2.6.16.4
LinuxLinux Kernel Version2.6.16.7
LinuxLinux Kernel Version2.6.16.8
LinuxLinux Kernel Version2.6.16_rc7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.16% 0.63
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/22875
http://www.securityfocus.com/archive/1/451404/100/0/threaded
http://www.securityfocus.com/archive/1/451417/100/200/threaded
http://www.securityfocus.com/archive/1/451426/100/200/threaded
http://www.vmware.com/download/esx/esx-202-200610-patch.html
http://www.vmware.com/download/esx/esx-213-200610-patch.html
http://www.vupen.com/english/advisories/2006/4502
http://secunia.com/advisories/21476
http://www.securityfocus.com/archive/1/451419/100/200/threaded
http://www.vmware.com/download/esx/esx-254-200610-patch.html
http://secunia.com/advisories/21035
http://www.redhat.com/support/errata/RHSA-2006-0579.html
http://www.redhat.com/support/errata/RHSA-2006-0580.html
http://secunia.com/advisories/20237
http://secunia.com/advisories/21745
http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
http://www.redhat.com/support/errata/RHSA-2006-0493.html
http://secunia.com/advisories/20914
http://www.debian.org/security/2006/dsa-1103
http://www.vupen.com/english/advisories/2006/2554
http://secunia.com/advisories/20398
http://www.novell.com/linux/security/advisories/2006-05-31.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:150
http://secunia.com/advisories/20671
http://www.debian.org/security/2006/dsa-1097
http://secunia.com/advisories/20716
http://www.ubuntu.com/usn/usn-302-1
http://secunia.com/advisories/21614
http://www.mandriva.com/security/advisories?name=MDKSA-2006:151
http://secunia.com/advisories/19869
http://secunia.com/advisories/22497
http://secunia.com/advisories/23064
http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm
http://www.osvdb.org/25067
http://www.redhat.com/support/errata/RHSA-2006-0710.html
http://www.securityfocus.com/bid/17735
http://www.trustix.org/errata/2006/0026
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/26137
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11327